From ADA News
A North Carolina orthopedic clinic has agreed to pay $750,000 to the federal government to settle charges that the clinic potentially violated the Health Insurance Portability and Accountability Act in 2013 by giving patient information to a potential business partner without an agreement.
More HIPAA horror.
This story from the ADA states that the clinic was fined three quarters of a million dollars just because they failed to execute a business associate agreement (BA) with a company that was duplicating x-rays.
There is no indication that any patient data was compromised, no patients suffered identity theft or were harmed in any way. The clinic simply failed to do some paper work.