Idaho State University is paying a $400,000 to the federal government to settle allegations it improperly exposed confidential medical records.
On Aug. 9, 2011, ISU told the U.S. Department of Health and Human Services of a breach of its unsecured electronic protected health information.
A subsequent investigation by the federal agency determined the school in Pocatello hadn’t adequately assessed potential risks to medical information shielded from release by the federal law known as the Health Insurance Portability and Accountability Act, or HIPAA.
As part of the agreement this month, Idaho State won’t contest the amount of the payment.
The school has also agreed to take protective measures, to ensure that a future release of student medical information doesn’t occur.
ISU also has to submit reports, to show it’s in compliance.
Was this article valuable?
Here are more articles you may enjoy.
Poorer Americans Dropped Federal Flood Insurance When Rates Rose 
NYT Asks Judge to Dismiss Trump’s ‘Implausible’ Defamation Suit 
Marijuana’s Move to Schedule III: What it Really Means for Cannabis Insurance 
Wells Fargo Sued by Ex-Manager Who Said Bank Faked Diversity 
Want to stay up to date?
Get the latest insurance news
sent straight to your inbox.