• realbadat@programming.dev
    link
    fedilink
    English
    arrow-up
    13
    ·
    7 months ago

    I’m aware of them.

    Let’s look at some of the most historic:

    • NY Presbyterian Hospital - with no real efforts on their end to prevent the violation of thousands of records, they got a whopping fine of… Under $5 million.
    • AHC - lack of risk analysis, failures in procedures and policies, etc - Just over $5 million.
    • Data breaches - usually around $4-5mil, the worst case being Anthem, about 80 million people effected - $16 million in fines. A record.

    Criminal offenses? Yeah, plenty of those - with individuals, usually related to that information then being used for other purposes (scams, theft, etc).

    But a company like Microsoft, you’re going to have a hard time convincing me it’s going to ruin the company. The history of HIPAA violations and their fines tell a very different story.