The HHS Office for Civil Rights is sanctioning Lahey Hospital and Medical Center in Massachusetts for what it terms widespread non-compliance with HIPAA privacy and security rules.
As part of the settlement, Lahey has agreed to pay an $850,000 fine and adopt a robust corrective action plan. The sanction is the 28th time OCR has sanctioned a HIPAA-covered entity for non-compliance with privacy and/or security rules.
Register or login for access to this item and much more
All Health Data Management content is archived after seven days.
Community members receive:
- All recent and archived articles
- Conference offers and updates
- A full menu of enewsletter options
- Web seminars, white papers, ebooks
Already have an account? Log In
Don't have an account? Register for Free Unlimited Access