cyber security

Reading patient’s medical records without authorization comes under HIPAA violation – Unauthorized access of PHI. If I found an employee reading patients details, I will enquire about it, find details that the employee is actually violating rules. Then, I will immediately report it to concern authorities. If the employee is intentionally reading the details then my delay is enough for that employee to sell patients details in dark market. Therefore, I will inform it as soon as possible.

If the employee is unaware of the violation then it comes under TIER 1 that fine $100 - $50,000 per violation. If it is an intentional violation then it can lead to maximum of $1.5 million per year according to its intensity and negligence.

Reference:

What is a HIPAA Violation? (2018, March 14). Retrieved from https://www.hipaajournal.com/what-is-a-hipaa-violation/