HHS settles case with Phoenix Cardiac Surgery for lack of HIPAA safeguards
NuLLFiXPhoenix Cardiac Surgery, P.C., of Phoenix and Prescott, Arizona, has agreed to pay the U.S. Department of Health and Human Services (HHS) a $100,000 settlement and take corrective action to implement policies and procedures to safeguard the protected health information of its patients. The settlement with the physician practice follows an extensive investigation by the HHS Office for Civil Rights (OCR) for potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules. The incident giving rise to OCR’s investigation was a report that the physician practice was posting clinical and surgical appointments for its [...]