Administrative Law Judge rules in favor of OCR enforcement, requiring Lincare, Inc. to pay $239,800 — $239,800

Full description

Navigate to: HIPAA for Professionals Regulatory Initiatives Privacy Summary of the Privacy Rule Guidance Combined Text of All Rules HIPAA Related Links Security Security Rule NPRM Summary of the Security Rule Security Guidance Cyber Security Guidance Breach Notification Breach Reporting Guidance Reports to Congress Regulation History Compliance & Enforcement Enforcement Rule Enforcement Process Enforcement Data Resolution Agreements Case Examples Audit Reports to Congress State Attorneys General Special Topics Parental Access Mental and Behavioral Health Change Healthcare Cybersecurity Incident FAQs HIPAA and COVID-19 HIPAA and Reproductive Health HIPAA and Final Rule Notice HIPAA and Telehealth HIPAA and FERPA Research Public Health Emergency Response Health Information Technology Health Apps Patient Safety Covered Entities & Business Associates Business Associate Contracts Business Associates Training & Resources FAQs for Professionals Other Administrative Simplification Rules Substance Use Disorder Confidentiality Administrative Law Judge rules in favor of OCR enforcement, requiring Lincare, Inc. to pay $239,800 The U.S. Department of Health and Human Services Administrative Law Judge (ALJ), Carolyn Cozad Hughes, ruled that Lincare, Inc. (Lincare) violated the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and granted summary judgment to the Office for Civil Rights (OCR) on all issues, requiring Lincare to pay $239,800 in civil money penalties (CMPs) imposed by OCR. This is the only the second time in its history that OCR has sought CMPs for HIPAA violations and each time the CMPs have been upheld upon judicial review. Read the HHS Press Release Read the Notice of Proposed Determination Read the ALJ's Opinion Read the Notice of Final Determination Content last reviewed February 3, 2016