The Office for Civil Rights at HHS has reached a $215,000 settlement with Washington state's Skagit County following a security breach of 1,581 local patients' personally identifiable medical information, according to the federal agency. The settlement puts governmental bodies across the country on notice about taking Health Insurance Portability and Accountability Act compliance seriously.
“This case marks the first settlement with a county government and sends a strong message about the importance of HIPAA compliance to local and county governments, regardless of size,” said Susan McAndrew, deputy director of health information privacy at the OCR. “These agencies need to adopt a meaningful compliance program to ensure the privacy and security of patients' information.”