Skip Navigation

UCLA Health System Settles Potential HIPAA Privacy and Security Violations

On July 6, 2011, HHS entered into a resolution agreement with the University of California at Los Angeles Health System (UCLAHS) to settle potential violations of the HIPAA Privacy and Security Rules. In the agreement, UCLAHS agrees to settle for $865,500 and has committed to a corrective action plan aimed at remedying gaps in its compliance with the rules. The investigation follows two separate complaints filed on behalf of two celebrity patients alleging that UCLAHS employees repeatedly and without permissible reason looked at the electronic protected health information of these and other UCLAHS patients.