WELLPOINT PAYS $1.7 MILLION FOR HIPAA BREACH
On July 11, the U.S. Department of Health and Human Services announced that health insurer Wellpoint Inc. has agreed to pay the sum of $1.7 million to settle claims that it violated the privacy and security rules under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). An improperly secured online database caused the electronic protected health information (ePHI) of 612,402 Wellpoint customers to be potentially vulnerable to unauthorized access, although the company said that it did not believe that any fraud or identity theft had occurred due to the breach.