« Return to search form

Violation Tracker Individual Record

Company: 
Anthem, Inc.
Current Parent Company: 
Anthem
Penalty: 
$16,000,000
Year: 
2018
Date: 
October 15, 2018
Offense Group: 
consumer-protection-related offenses
Primary Offense: 
privacy violation
Violation Description: 

Anthem, Inc. agreed to pay $16 million to the Office for Civil Rights and take substantial corrective action to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules after a series of cyberattacks exposed the electronic protected health information of almost 79 million people.

Level of Government: 
federal
Action Type: 
agency action
Agency: 
Health & Human Services Department Office for Civil Rights
Civil or Criminal Case: 
civil
HQ Country of Parent: 
USA
HQ State of Parent: 
Indiana
Ownership Structure of Parent: 
publicly traded
Major Industry of Parent: 
healthcare services
Specific Industry of Parent: 
insurance; managed care
Source of Data: 

https://www.hhs.gov/about/news/2018/10/15/anthem-pays-ocr-16-million-rec...

Source Notes: 
If an online information source is not working, check the Violation Tracker Data Sources page for an updated link.
Parent company note: 
Parent-subsidiary relationship is current as of the most recent revision listed in the Update Log.