5 Lessons From Idaho State University's HIPAA Settlement

Law360, New York (June 10, 2013, 12:28 PM EDT) -- Idaho State University recently agreed to pay $400,000 to settle Health Insurance Portability and Accountability Act Security Rule violations that allegedly left the electronic health information of 17,500 patients accessible for at least 10 months. According to the Office of Civil Rights:

ISU disabled firewall protections that would have otherwise protected the information on its servers. ISU's risk analyses and assessments of its affiliated clinics were inadequate. ISU failed to apply proper security measures and policies to address risks to the information. ISU did not have...
To view the full article, register now.