Top 10 repeat HIPAA violators

Twitter icon
Facebook icon
LinkedIn icon
e-mail icon
Google icon
 - CyberPrivacy

An analysis of HIPAA violations between 2011 and 2014 reveals numerous repeat offenders.

Conducted by ProPublica, the analysis shows the following health providers had the most privacy complaints that resulted in either corrective-action plans submitted by a health provider or "technical assistance" provided by HHS' Office for Civil Rights on how to comply with the law:

1. U.S. Department of Veterans Affairs — 220 complaints

2. CVS Health — 204 complaints

3. Walgreens — 183 complaints

4. Kaiser Permanente (Oakland, Calif.) —146 complaints

5. Walmart — 71 complaints

6. LabCorp — 58 complaints

7. Quest Diagnostics — 55 complaints

8. Express Scripts —51 complaints

9. Rite Aid — 48 complaints

10. United Healthcare — 43 complaints

Violators receive private warnings but sanctions are seldom issued. In CVS Health's 204 incidents, the Office for Civil Rights merely accepted the company's promises to improve its privacy protections.