The penalty resolves alleged HIPAA violations stemming from a data breach that took place from December 2013 to May 2015 and compromised data on 9.3 million people, according to HHS' Office for Civil Rights.

Source link