During each of the past three years, covered entities paid more than $20 million in HIPAA fines. While a handful of major breaches made headlines—most notably Anthem’s $16 million mistake—small practices can’t afford to be complacent about security.

The more negligent a healthcare organization is found to be at the time of a HIPAA violation, the higher the penalty. According to the U.S. Department of Health and Human Services, fines can range from $100 to $50,000 per violation or record, with a maximum penalty of $1.5 million per year for each violation.
Read more at Medical Economics >>