Skip to main content

All Access Subscription

Get unlimited access to our full publication and article library.

Get Access Now

Interested in Group Sales? Learn more

The unauthorized release of employee health information can result in civil, and sometimes criminal, liability under both federal and state laws. For example, covered individuals under the Health Insurance Portability and Accountability Act (HIPAA) face civil fines ranging from $100 to $25,000, depending on one's level of intent. Criminal penalties include fines ranging from $50,000 to $250,000 and imprisonment of up to 10 years.

Know penalties for privacy reg violations