Design World

  • Home
  • Technologies
    • 3D CAD
    • Electronics • electrical
    • Fastening & Joining
    • Factory automation
    • Linear Motion
    • Motion Control
    • Test & Measurement
    • Sensors
    • Fluid power
  • Learn
    • Ebooks / Tech Tips
    • Engineering Week
    • Future of Design Engineering
    • MC² Motion Control Classrooms
    • Podcasts
    • Videos
    • Webinars
  • LEAP AWARDS
  • Leadership
    • 2022 Voting
    • 2021 Winners
  • Design Guide Library
  • Resources
    • 3D Cad Models
      • PARTsolutions
      • TraceParts
    • Digital Issues
      • Design World
      • EE World
    • Women in Engineering
  • Supplier Listings

Following Major Data Breach, MD Anderson Hit With $4.3 Million Penalty

By Daniel Seeger | June 22, 2018

Share

This week, the federal government levied a fine of $4.3 million on the University of Texas MD Anderson Cancer Center for HIPAA violations stemming from major data breaches in 2012 and 2013. The theft of an employee’s laptop and two separate incidents involving misplaced thumb drives resulted in the potential exposure of the medical records of approximately 35,000 patients.

Administrative Law Judge Steven Kessel, with the U.S. Department of Health and Human Services (HHS), passed down the decision, decrying the healthcare facility’s lax approach to implementing data security measures. According to Texas Public Radio, the fine is the fourth largest in HSS Office of Civil Rights (OCR) history.    

MD Anderson doesn’t dispute the loss of the computer and the data storage devices. But the healthcare facility also maintains the fine is out of proportion to the infraction because it can’t be proved that medical records were specifically compromised.

“In all three cases involving the loss or theft of devices reviewed by the Administrative Law Judge, there is no evidence any patient information was viewed or any harm to patients was caused,” the healthcare facility told the Houston Chronicle, in a statement issued after the ruling.

MD Anderson also argues that the records in question shouldn’t be held to the most stringent standards of privacy protection because the data was primarily being used for research purposes.

Even if there’s truth to the questionable claim that HIPAA regulations don’t fully apply to research-based health records, Roger Severino, director of the OCR, believes facility leadership was fully aware they needed a better approach to data security.

“MD Anderson knew, since 2006, that it should be encrypting its devices,” Severino told Texas Public Radio. “Their own people were saying ‘we should encrypt, we should encrypt.’”

MD Anderson officials expressed intention to appeal the decision.

Main image credit: Associated Press/Pat Sullivan


Filed Under: Industry regulations

 

Related Articles Read More >

ids-industrial-camera-manufacturer.sustainability-3
IDS focuses on sustainability in shipping
Part 5: Motion control + MQTT, OPC-UA, and other protocols for cloud services
Facebook CEO Zuckerberg Calls for More Outside Regulation
Musk’s Boring Company Calls it Quits on LA Tunnel, Instead Focuses on Hyperloop

DESIGN GUIDE LIBRARY

“motion

Enews Sign Up

Motion Control Classroom

Design World Digital Edition

cover

Browse the most current issue of Design World and back issues in an easy to use high quality format. Clip, share and download with the leading design engineering magazine today.

EDABoard the Forum for Electronics

Top global problem solving EE forum covering Microcontrollers, DSP, Networking, Analog and Digital Design, RF, Power Electronics, PCB Routing and much more

EDABoard: Forum for electronics

Sponsored Content

  • Global supply needs drive increased manufacturing footprint development
  • How to Increase Rotational Capacity for a Retaining Ring
  • Cordis high resolution electronic proportional pressure controls
  • WAGO’s custom designed interface wiring system making industrial applications easier
  • 10 Reasons to Specify Valve Manifolds
  • Case study: How a 3D-printed tool saved thousands of hours and dollars

Design World Podcasts

May 17, 2022
Another view on additive and the aerospace industry
See More >
Engineering Exchange

The Engineering Exchange is a global educational networking community for engineers.

Connect, share, and learn today »

Design World
  • Advertising
  • About us
  • Contact
  • Manage your Design World Subscription
  • Subscribe
  • Design World Digital Network
  • Engineering White Papers
  • LEAP AWARDS

Copyright © 2022 WTWH Media LLC. All Rights Reserved. The material on this site may not be reproduced, distributed, transmitted, cached or otherwise used, except with the prior written permission of WTWH Media
Privacy Policy | Advertising | About Us

Search Design World

  • Home
  • Technologies
    • 3D CAD
    • Electronics • electrical
    • Fastening & Joining
    • Factory automation
    • Linear Motion
    • Motion Control
    • Test & Measurement
    • Sensors
    • Fluid power
  • Learn
    • Ebooks / Tech Tips
    • Engineering Week
    • Future of Design Engineering
    • MC² Motion Control Classrooms
    • Podcasts
    • Videos
    • Webinars
  • LEAP AWARDS
  • Leadership
    • 2022 Voting
    • 2021 Winners
  • Design Guide Library
  • Resources
    • 3D Cad Models
      • PARTsolutions
      • TraceParts
    • Digital Issues
      • Design World
      • EE World
    • Women in Engineering
  • Supplier Listings