Abstract
Heath services come with the promise of confidentiality.1 The ethical mandate to safeguard the confidentiality of personal health information aligns with legal mandates to do the same. Numerous state and federal laws demand one form of health data confidentiality or another, best illustrated by the Health Insurance Portability and Accountability Act.2 In early 2011, the Department of Health and Human Services decided to take a tougher stand against HIPAA violators, utilizing powers created by the Health Information Technology for Economic and Clinical Health Act.3 Ushering in a new era, the U.S. Department of Health and Human Services imposed an unprecedented civil penalty of $4.3 million on Cignet Health of ..