KNOW WHAT YOU NEED TO HELP PROTECT YOUR CLIENTS
What is Considered a HIPAA Violation?
Defined, a HIPAA violation fails to fulfill the requirements of "The Health Insurance Portability and Accountability Act" (HIPAA), 1996. HIPAA regulations can be violated in several ways, but the most common violation is the misuse or exposure of electronically protected health information (ePHI). The Office for Civil Rights (OCR) is responsible for enforcing HIPAA and the prosecution of penalties for violations. In the past, the OCR has handled the first-ever digital offenses with technical help, apart from a financial fine. The technical support works great, but it can only do wonders if the organization that has done violation implements the new procedures and takes security measures.
For example, the marketing team of the hospital posts a photo of a doctor and a patient to social media, and a "Cardiology" sign appears in the background, which can give the impression of the patient being treated for heart disease. This would be Protected Health Information (PHI) and should be protected under HIPAA, and if the consent of the patient were not gained to post the picture publicly, then this would be a costly violation. Now you can understand that even the most acquitted example of "incidental" PHI could result in HIPAA confidentiality violation.