Foot-Dragging on HIPAA Breach Notice Costs Illinois Health System

“An Illinois health system has reached a $475,000 settlement over allegations it waited too long to report a data breach, the first time the government has settled over untimely breach notifications.

Presence Health uncovered a data breach on Oct. 22, 2013 affecting 836 individuals, but didn’t report the breach to affected individuals until Feb. 3, 2014, the HHS Office for Civil Rights said Jan. 9. In addition to the $475,000 payment, Presence agreed to enter into a two-year corrective action plan.”

Read more details here.

Author: James Swann