Earlier this week, I posted the ninth case study on HIPAA Breaches. Why was this case important? The healthcare organization that got fined is a small hospice in the Northwest. The precipitating event was one stolen laptop that was not encrypted. The laptop contained a few hundred (441) patient records. The fine was $50,000.
Every small practice in the country has the same essential risks or vulnerabilities. An unencrypted laptop with a spreadsheet of all the practice’s patients.
An unencrypted laptop, with a few hundred patient records, is stolen and results in a $50,000 fine.