{"id":180,"date":"2013-07-15T16:34:58","date_gmt":"2013-07-15T20:34:58","guid":{"rendered":"http:\/\/blogs.duanemorris.com\/healthlaw\/?p=180"},"modified":"2015-11-02T11:46:44","modified_gmt":"2015-11-02T15:46:44","slug":"wellpoint-pays-hhs-1-7-million-to-settle-hipaa-security-violations","status":"publish","type":"post","link":"https:\/\/blogs.duanemorris.com\/healthlaw\/2013\/07\/15\/wellpoint-pays-hhs-1-7-million-to-settle-hipaa-security-violations\/","title":{"rendered":"WellPoint Pays HHS $1.7 Million to Settle HIPAA Security Violations"},"content":{"rendered":"<p><em><strong>Covered Entities Cautioned Regarding Use of Business Associates<\/strong><\/em><\/p>\n<p>On July 8, 2013, health insurer WellPoint, Inc. entered into a <a href=\"http:\/\/www.hhs.gov\/ocr\/privacy\/hipaa\/enforcement\/examples\/wellpoint-agreement.pdf\" target=\"_blank\">Resolution Agreement<\/a> with the U.S. Department of Health and Human Services, Office for Civil Rights (HHS), agreeing to pay HHS $1.7 million to resolve an HHS complaint regarding violations of the HIPAA Privacy and Security Rules during the period of October 23, 2009, through March 7, 2010. WellPoint reported a breach of electronic protected health information (ePHI) on June 18, 2010, leading to an HHS investigation that commenced on September 9, 2010.<\/p>\n<p>The WellPoint matter serves as a reminder to HIPAA-covered entities and subcontractors that are business associates to comply with the HIPAA Security Rule and to prudently oversee the services provided by these business associates.<\/p>\n<p><a href=\"http:\/\/www.duanemorris.com\/alerts\/WellPoint_pays_HHS_to_settle_HIPAA_security_violations_4956.html\" target=\"_blank\">Click here<\/a> to read the full <em>Alert<\/em>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Covered Entities Cautioned Regarding Use of Business Associates On July 8, 2013, health insurer WellPoint, Inc. entered into a Resolution Agreement with the U.S. Department of Health and Human Services, Office for Civil Rights (HHS), agreeing to pay HHS $1.7 million to resolve an HHS complaint regarding violations of the HIPAA Privacy and Security Rules &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/blogs.duanemorris.com\/healthlaw\/2013\/07\/15\/wellpoint-pays-hhs-1-7-million-to-settle-hipaa-security-violations\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;WellPoint Pays HHS $1.7 Million to Settle HIPAA Security Violations&#8221;<\/span><\/a><\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[73,276,185,344,347,179,36,40,339,222,219,345],"ppma_author":[906],"class_list":["post-180","post","type-post","status-publish","format-standard","hentry","category-health-law","tag-bilimoria","tag-business-associate","tag-clark","tag-covered-entities","tag-electronic","tag-health","tag-hhs","tag-hipaa","tag-insurer","tag-phi","tag-security","tag-violations"],"authors":[{"term_id":906,"user_id":6,"is_guest":0,"slug":"duanemorris3","display_name":"Duane Morris","avatar_url":"https:\/\/secure.gravatar.com\/avatar\/843ff6e7a8fe5fc92109b47a45f34b6cf0ea499e6e788db23456c838b0ae6747?s=96&d=blank&r=g","0":null,"1":"","2":"","3":"","4":"","5":"","6":"","7":"","8":""}],"_links":{"self":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts\/180","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/comments?post=180"}],"version-history":[{"count":0,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/posts\/180\/revisions"}],"wp:attachment":[{"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/media?parent=180"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/categories?post=180"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/tags?post=180"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blogs.duanemorris.com\/healthlaw\/wp-json\/wp\/v2\/ppma_author?post=180"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}