The LA Times is reporting that Kaiser Permanente's Bellflower hospital has been fined $250,000 by the California Department of Public Health over a breach that occurred in January of this year.
The California Department of Public Health charged that the hospital "failed to prevent unlawful or unauthorized access to, or use or disclosure of a patient's medical information". It is the first monetary penalty from an amendment to the California Health and Safety Code enacted January 1.
In all, the investigation found that 21 employees and 2 physicians viewed Nadya Suleman's medical record without need or authorization. Many of the accesses had apparently taken place after the initial breach notification to the state.
I think California is sending a clear message here about their commitment to enforcement here. I will also be interested to see if HHS will follow California's lead with its own penalties for HIPAA violations.
Comments