Online Safety Community

Learning how to manage the HIPAA Business Associate process is important

Most healthcare providers or organizations that are described as Covered Entities by HIPAA, engage vendors as HIPAA Business Associates for carrying out many of their services on their behalf. HIPAA defines a Business Associate as a person or an entity who carries out some or all functions or activities that involve the use or disclosure of Protected Health Information on behalf of, or of providing services to a Covered Entity.

The practice of choosing vendors is fairly common in this industry because of the many benefits it brings. Although fairly prevalent; managing this process can be confusing. This is despite the fact that HIPAA requires them to enter into Business Associate Agreements (BAA's), which are agreements aimed at ensuring safeguarding of PHI. A healthcare organization or individual that enters into a BAA is obliged to comply with the HIPAA Security Rule and Privacy Rule.

It is important to choose the right BA

With such a major role being expected of the BA; Covered Entities have to show complete diligence in choosing the right one, for this is the only means to ensuring compliance with the process required of the HIPAA Security Rule and Privacy Rule. Any small noncompliance attracts heavy penalties for both Covered Entities and their Business Associates whenever a data breach occurs.

The only means by which Covered Entities can avoid such situations is by putting a systematic process in place for handling these business relationships. The proper access and protection of a healthcare organization's Protected Health Information by the Business Associate has to be ensured by such a process.

Some of a Business Associate’s functions and activities include:

  • Processing or administration of claims
  • Processing of data analysis or administration utilization 
  • Review of the Quality Assurance billing
  • Benefit management
  • Practice management and repricing.

The sheer range and importance of functions and activities carried out by Business Associates necessitates a complete and thorough grasp on the part of healthcare organizations of the ways by which to identify Business Associates.

Learn the ways of getting the Business Associate Agreement right

A webinar that is being organized by MentorHealth, a leading provider of professional trainings for the healthcare industry, will impart clear understanding of all the nuances of the BAA.

Jay Hodes, who is president of Colington Security Consulting, LLC, which provides HIPAA consulting services for healthcare providers and Business Associates, who is the speaker at this webinar, will show what thinking has to go into and what processes have to be adhere to when choosing a Business Associate.

Participants will learn how they can find out if Business Associates have the necessary technical, physical and administrative safeguards needed for protecting shared Protected Health Information in place. Another important learning he will offer is on when a vendor becomes a Business Associate and how that relationship may change and impact the BAA.

Register for this webinar and get clarity on the ways of monitoring and managing the HIPAA Business Associate process.

Understanding the BAA process

The way in which the Business Associate Agreement (BAA) process needs to be understood and perceived will be explained at this webinar. There are as many as ten requirements the government expects to meet for this process. Jay will show how to put these in place. Also taken up is the issue of the use of Vendor Security Questionnaires and how to implement them. The nature and type of breaches caused by Business Associates and the ways of handling them will also be explained.

People who are involved in BAAs in one or another way, such as Compliance Officers, HIPAA Privacy Officers, HIPAA Security Officers, Medical/Dental Office Managers, Practice Managers, Information Systems Managers, Chief Information Officers, General Counsel or Lawyers, and Practice Management Consultants will gain from this webinar.

In this webinar on what a healthcare organization needs to know about its responsibilities in managing Business Associates, Jay will cover the following areas:

  • How to conduct Vendor Screening
  • Ten Requirements of Business Associate Agreement
  • Developing and Using Vendor Security Questionnaires
  • Reviewing the Questionnaires
  • I Like This Vendor, but…
  • Auditing Your Business Associate
  • Dealing with a Breach Caused by Your Business Associate
  • What are the penalties and fines for non-compliance and how to avoid them?
  • Q&A.

Views: 7


You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

Adam Fleaming posted a blog post

The GDPR differs Significantly from EC Data Protection Directive 95/ 46

The General Data Protection Regulation (GDPR), which has been codified as Regulation (EU) 2016/679, is a very powerful law regarding the protection of data of the half billion people who live in the European Union (EU). Having come into effect as a result of the European Commission having adapted the proposal for its creation on January 25, 2012; it will replace Directive…See More
Adam Fleaming posted events
John Robinson posted an event

Laboratory Compliance webinar for $10 each at Online

August 16, 2017 at 10am to December 31, 2017 at 11am
Want to enhance your regulatory compliance career by learning a new course? All that it costs is $10. Yes, GlobalCompliancePanel, a provider of professional trainings, is offering hundreds of high value regulatory compliance courses for a mere $10 each.Regulatory compliance learning, that vital ingredient needed for professionals in any area of regulatory compliance, is a put off, because many…See More
rodriguezcecelia posted a blog post

How PMP Certification impact Your Salary?

Before investing money and time in PMP certification, it is very important for anyone to understand how the certification will impact salary. In this article, we will discuss PMP certification and its effects on salary, which can help you to decide whether you should go for it or not. We will focus on different perspectives of PMP salary, which is based on experience, the size of the company, designation and many others. Overview of PMP CertificationThough the PMP certification salary hike is…See More


Safety - A Prerequisite 11 Replies

Whether working at home or outside, to observe safety should be our pre-requisite. The employer before anything must be sure of the safety of its employees especially the ones working in mines or any…Continue

Tags: products, safety

Started by Enna Henry. Last reply by Tara safe yesterday.

Lean Six Sigma Black Belt Training in New York City

Welcome to MSys Training! We thank you for visiting MSys LSSBB training page. Attend our 4 days Lean Six Sigma Black Belt (LSSBB) training program with 100% pass rate, high quality course material,…Continue

Tags: sigma, six

Started by rodriguezcecelia Aug 11.

ITIL Certification Training - MSysTraining

The ITIL® Foundation is an entry level qualification in Information Technology industry. It gives participants information about the key elements, terminologies and concepts used in the ITIL Service…Continue

Tags: itil

Started by rodriguezcecelia Aug 8.

Snowflake and Star Schema in Qlikview

In big name schema all of the facts are stored in one important table and the usage of number one key and overseas key courting different measurement tables are related with the fact desk.SNOWFLAKE…Continue

Tags: processing, transactional, qlikview

Started by Soujanya Naganuri Jul 25.

What is Class Structure in Pega?

Class contains the rule by way of which objects behave. outline rules such as houses, sports, flows, html paperwork, etc. to be had to different subordinate classes. lessons are organized into a…Continue

Started by Soujanya Naganuri Jul 17.



© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service