<ul><li>Eyeglass manufacturer and retailer Warby Parker settled a 2018 data breach investigation by the Office for Civil Rights (OCR) for $1.5 million.</li><li>During the breach, unauthorized third parties accessed customer accounts, compromising personal information of 197,986 patients.</li><li>OCR alleged three violations of the HIPAA Security Rule, including failure to conduct a proper risk analysis, implement adequate security measures, and review information system activity.</li><li>This settlement highlights the importance of conducting annual security risk assessments and implementing risk management programs.</li></ul>

Warby Parker Settles Data Breach Case with OCR for $1.5M

Discover more