Idaho State University is paying a $400,000 to the federal government to settle allegations it improperly exposed confidential medical records.
On Aug. 9, 2011, ISU told the U.S. Department of Health and Human Services of a breach of its unsecured electronic protected health information.
A subsequent investigation by the federal agency determined the school in Pocatello hadn’t adequately assessed potential risks to medical information shielded from release by the federal law known as the Health Insurance Portability and Accountability Act, or HIPAA.
As part of the agreement this month, Idaho State won’t contest the amount of the payment.
The school has also agreed to take protective measures, to ensure that a future release of student medical information doesn’t occur.
ISU also has to submit reports, to show it’s in compliance.
Was this article valuable?
Here are more articles you may enjoy.
Ex-First Brands Officer Says He Was Kept in the Dark About Fraud 
State Farm Paid a ‘Hail’ of a Lot of Claims in 2025 
Tesla’s California Sales Slide Deepens as Hybrids Displace EVs 
US Weighs Tougher Auto Import Rules to Accelerate Reshoring 
Want to stay up to date?
Get the latest insurance news
sent straight to your inbox.