UMass settles potential HIPAA violations following malware infection – November 22, 2016

The University of Massachusetts Amherst (UMass) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules. The settlement includes a corrective action plan and a monetary payment of $650,000, which is reflective of the fact that the University operated at a financial loss in 2015.

Content created by Office for Civil Rights (OCR)
Content last reviewed on November 22, 2016