HIPAA was created in 1996 to protect patients' private health information. However, some healthcare workers have violated HIPAA by inappropriately accessing the medical records of high-profile patients like George Clooney, Britney Spears, and Farrah Fawcett. Violations can occur unintentionally due to a lack of training, or intentionally for malicious purposes such as selling private information to media outlets. Healthcare organizations can help prevent violations by educating employees on HIPAA policies and maintaining secure filing systems with access restrictions. Violations may result in fines up to $250,000 or imprisonment up to 10 years depending on the offense.