Across the country, many health systems have been involved in data breaches. At least 57 incidents involving at least 500 patients have been submitted to the U.S. Department of Health and Human Services’ Office for Civil Rights so far this year. That office is tasked with investigating such breaches and may levy fines against health systems, depending on a breach’s severity, said Rachel Patrizzo, vice president of cyber liability underwriting with TDC Specialty Underwriters, a subsidiary of The Doctors Company, which sells medical malpractice insurance.