HIPAA’s Enforcement Realities
A Status Report On HIPAA Enforcements and a Warning: The Government is Getting More Aggressive
By the end of May 2017, The Office for Civil Rights (OCR) within Health and Human Services (HHS) had already fined nine different healthcare organizations a total of $17 million for various HIPAA compliance violations. With an average fine of $1.9 million per enforcement, 2017 is trending at a rapid rate, and will undoubtedly surpass the total fines levied in 2016. Here’s a little more perspective: the fines of 2016 totaled more than $23 million. Compare that to the approximately $8 million in both 2015 and 2014, and the $3.8 million in 2013.
Fines are increasing at an exponential rate.
Fill out the form below to download the report.

Recent Articles View All Thought Leadership
By: Nathan Smith, CPA, Senior Manager at Blue & Co. “You can’t have it both ways” is a sentence many CPAs may have expressed to their clients at one time […]
By Cory Schunemann, Tax Manager at Blue & Co. Tax-exempt organizations frequently grapple with how to report fundraising events on Form 990. The form requires them to separate event proceeds […]
On April 11, 2025, the Centers for Medicare & Medicaid Services (CMS) issued a proposed rule for updates to Medicare payment policies and rates for skilled nursing facilities under the […]