Connecticut Attorney General Richard Blumenthal brought the first HIPAA action under the HITECH provisions of the American Recovery and Reinvestment Act in a suit against Health Net of Connecticut, according to report by AHA News Now.
The suit alleges that Health Net failed to secure private information for approximately 446,000 plan members and did not promptly notify them of the attorney general's office of the security breach. It also alleges that the insurer failed to effectively train and supervise its workforce on the proper policies for maintaining the privacy of personal health information and for failing to encrypt private information.
The HITECH provisions authorize state attorneys general to enforce the Health Insurance Portability and Accountability Act.
Read the AHA New Now's report on the Connecticut suit against Health Net.
Save
The suit alleges that Health Net failed to secure private information for approximately 446,000 plan members and did not promptly notify them of the attorney general's office of the security breach. It also alleges that the insurer failed to effectively train and supervise its workforce on the proper policies for maintaining the privacy of personal health information and for failing to encrypt private information.
The HITECH provisions authorize state attorneys general to enforce the Health Insurance Portability and Accountability Act.
Read the AHA New Now's report on the Connecticut suit against Health Net.
Save