California court ruling: health care providers may be off the hook for data theft in some cases

In a judicial decision sure to garner attention, a California state appellate court decided last week that UCLA Health is not liable for patient data breaches due to a 2011 theft.  It is important to note, however, that regardless of this decision, in the event of any breach affecting the records of 500 or more patients, health care organizations will still be held to all HIPAA regulations, including reporting requirements and possible fines levied by the U.S. Department of Health and Human Services.

See Payers and Providers article at “Privacy Ruling Benefits CA Hospitals: They May Not be Liable For All Stolen Data, Court Rules”

Posted in ARRA, Higher Ed, HITECH Act, News, Privacy & Security Tagged with:

Leave a Reply

Your email address will not be published. Required fields are marked *