Advertisement

16

Bottom Row Image

Advertisement

June 04, 2023

French Insider Episode 22: French Investments in the U.S. Wine... by: Sheppard, Mullin, Richter, & Hampton LLP
17 Actionable Ways to Build Your Brand and Business by: Stefanie M. Marrone
Going ‘green’—what Does that Mean? FTC Proposes Revisions to Green... by: Lesli C. Esposito and Marisa E. Poncia
Unanimous Supreme Court Endorses Subjective Belief Standard for False... by: Conor O. Duffy and Seth B. Orkand
Compliance Update — Insights and Highlights May 2023 by: Memrie M. Fortenberry
Trending in Telehealth: May 23 – 30, 2023 by: Amanda Enyeart and Taylor Edward Hood
Minnesota Legalizes Recreational Marijuana, Protects Off-Duty Use by: Catherine A. Cano and Elaine Luthens
Washington’s My Health, My Data Act: What Types Of Data Are Regulated... by: David A. Zetoony
FDA Cracking Down on Unapproved HCT/Ps with Fourth Untitled Letter of... by: Dominick DiSabatino and Cortney Inman
Supreme Court Requires Traceability for Securities Act Claims Arising... by: Jonathan E Richman
How Small Actions Can Yield Big Results in Your Marketing and... by: Stefanie M. Marrone
Employment Tip of the Month – June 2023 by: Employment & Labor at Wilson Elser

June 03, 2023

June 02, 2023

June 01, 2023

Article By

Linn F. Freedman

Robinson & Cole LLP

Data Privacy + Security Insider

Related Practices & Jurisdictions

All Federal

Advertisement

Athens Orthopedic Settles with OCR for $1.5M for Data Breach

Friday, October 2, 2020

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has announced that it has settled potential violations of HIPAA with Athens Orthopedic Clinic PA (Athens) for $1.5 million, following an investigation of a data breach that occurred in 2016.

The data breach compromised the protected health information of 208,557 individuals when the information may have been stolen and posted online for sale. Two days later, the hacker requested payment of money in exchange for return of the stolen database. It is reported that the hacker was able to access the database through the use of a vendor’s credentials.

The OCR’s investigation found that Athens had systemic noncompliance with both the HIPAA Privacy and Security Rules. In addition to the monetary settlement, Athens will also implement a corrective action plan and be monitored for two years.

Copyright © 2023 Robinson & Cole LLP. All rights reserved.National Law Review, Volume X, Number 276

Advertisement

Latest Legal News & Analysis

French Insider Episode 22: French Investments in the U.S. Wine Industry with Jean...

Sheppard, Mullin, Richter & Hampton LLP

17 Actionable Ways to Build Your Brand and Business

Stefanie Marrone Consulting

Going ‘green’—what Does that Mean? FTC Proposes Revisions to Green Guides

McDermott Will & Emery

Unanimous Supreme Court Endorses Subjective Belief Standard for False Claims...

Robinson & Cole LLP

Compliance Update — Insights and Highlights May 2023

Jones Walker LLP

Advertisement

TRENDING LEGAL ANALYSIS

The Fact That Plaintiff Does Not Exist Does Not Deprive Court Of Jurisdiction To...

By

Allen Matkins Leck Gamble Mallory & Natsis LLP

EEOC Issues Guidance Following Expiration of COVID-19 Public Health Emergency

By

Hunton Andrews Kurth

New Washington Class Action Raises Concerns for Employers Under State’s Noncompete...

By

Ogletree, Deakins, Nash, Smoak & Stewart, P.C.

Delta Hit With Greenwashing Lawsuit Over Carbon Neutral Claims

By

Robinson & Cole LLP

Can UK Administrators Apply For Conditional Discharge of Liability?

By

Squire Patton Boggs (US) LLP

Texas Appellate Court Upholds Shock Verdict and Rejects “Admission Rule”

By

Wilson Elser Moskowitz Edelman & Dicker LLP

Upcoming Legal Education Events

PE & Healthcare Summit Berlin 2023

Tuesday, June 6, 2023

FinTech University: FinTech and International Law

Tuesday, June 6, 2023

Ward and Smith's 2023 Health Care Breakfast and Learns at New Bern Golf & Country Club!

Wednesday, June 7, 2023

PCI DSS 4.0: Third-party Service Providers And Risk Management

Wednesday, June 7, 2023

Advertisement

About this Author

Linn F. Freedman, Robinson Cole Law Firm, Cybersecurity and Litigation Law Attorney, Providence

Linn F. Freedman

Partner

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She provides guidance on data privacy and cybersecurity compliance to a full range of public and private clients across all industries, such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine, and charitable organizations. Linn is a member of the firm's Business Litigation Group and chairs its Data Privacy + Cybersecurity Team. She is also a member of the Financial Services Cyber-Compliance Team (CyFi ...

[email protected]

401-709-3353