HIPAA applies to people working in the medical field. EDIT: Some people not directly medical professionals can be responsible and violate for medical PII. This could be IT personnel for example working at a hospital. So, management may cast a wider net than simply medical personnel at training time. Those HIPAA trained persons would also be subject to HIPAA law and violation.
If Nurse A or Doctor B are at clinic and accidentally placed or left someone’s medical Personally Identifiable Information (PII) out in the open and I or you saw it and even recorded it with our camera, you and I did not violate HIPPA, - they did. You and I are not HIPPA trained and are not responsible for protecting someone’s medical information.
If the nurse or doctor walked outside and sat on a bench to read someone’s file or even a single paper containing a patient’s medical information. Then walked off leaving it on the bench, they are in violation of HIPAA. If I pick it up and make copies passing it out on the street corner. I am not in violation of HIPAA because I am not legally responsible for protecting that information.