Online Safety Community

HIPAA’s compliance expectations from Business Associate

The Health Information Portability and Accountability Act (HIPAA) regards the Business Associate as a major player. HIPAA defines the Business Associate (BA) as either an organization or a person who works with or provides service to a Covered Entity, who in turn is defined as one who handles or discloses Protected Health Information (PHI).

So, a Business Associate is any person or entity that is involved in creating, receiving, maintaining or transmitting PHI to a Covered Entity for a purpose or activity or function as mandated and regulated by the HIPAA Privacy Rule.

Getting compliance right is complicated

While there is no ambiguity about the definition of a Business Associate; what is vague and confusing is the set of roles, responsibilities and requirements expected from a BA. HIPAA has a lot of expectations from the Business Associate. It expects total and complete compliance with the requirements it has set out for Business Associates.

The HITECH Act has recently made changes and updates, raising the bar of expectations from Business Associates. The reasoning for these changes is that the role of the Business Associate is critical, and its functions need to keep changing from time to time to accommodate the changes in technology, best practices, etc. As a result, it has extremely stringent mandates regarding the way a Business Associate handles and uses health information, which is confidential and highly valuable.

Compliance is not negotiable

A Business Associate has to show compliance with a wide range of regulatory requirements. The core areas of HIPAA compliance, such as privacy obligations, security standards, and breach notification requirements, are all where the Business Associate’s work is heavily regulated. A small deviation is viewed very seriously by the OCR. Punitive actions from the OCR are damaging to the Business Associate. The only way of avoiding these penal actions is to be completely compliant with the HIPAA expectations.

All these do not mean that Business Associates should dread HIPAA compliance implementation. They can become successful at their business if they get a complete grasp of HIPAA’s compliance requirements. They need clarity on a number of areas. Once their problem areas are addressed, they are sure to become successful in their business.

Come and get complete understanding of HIPAA compliance for Business Associates

It is with the aim of imparting this understanding that GlobalCompliancePanel, a leading provider of professional trainings for all the areas of regulatory compliance, will be organizing a two-day seminar. Jay Hodes, who is a leading expert in HIPAA compliance and President of Colington Consulting, which provides HIPAA consulting services for healthcare providers and Business Associates, will be the Director of this seminar.

In order to get a complete grasp of the compliance requirements that HIPAA has for Business Associates, please register for this highly valuable seminar by logging on to http://www.globalcompliancepanel.com/control/globalseminars/%7Eprod....

Total understanding of the requirements for Business Associates

The main aim of this course is to clear the confusions about the roles, requirements and responsibilities of the Business Associate, a role that is often shrouded in haziness. it is only when this is done that Business Associates will have the confidence to enter into contracts for providing services as a vendor or subcontractor. Jay will equip participants with complete understanding of what they must put in place to meet these requirements. In other words, he will help them get complete clarity on HIPAA compliance regulations for Business Associates.

The seminar will be very in-depth, as Jay will start with an understanding of the basics, such as why HIPAA was created, which will help participants get to the deeper aspects of HIPAA compliance requirements. Over the course of these two days, Jay Hodes will cover the following areas at this seminar:

  • Why was HIPAA created?
  • Who Must Comply with HIPAA Requirements?
  • What are the HIPAA Security and Privacy Rules?
  • What are the Consequences of being a Business Associate
  • What is a HIPAA Compliance Program for a Business Associate?
  • What is a HIPAA Risk Management Plan?
  • What is a HIPAA Risk Assessment?
  • What is the Role of the HIPAA Security Official?
  • What are HIPAA training requirements?
  • What is a HIPAA data breach and what happens if it occurs?
  • What are the penalties and fines for non-compliance and how to avoid them
  • Case Examples of HIPAA Data Breaches
  • Creating a Culture of Compliance
  • Q&A.

Views: 17

Comment

You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

Training Doyens posted events
5 minutes ago
kate smith posted a blog post

The Myers-Briggs Type Indicator as a means to build Greater Team Effort

The Myers-Briggs Type Indicator (MBTI) is considered the world's most popular personality test. The main reason for its popularity is the empathetic and comprehensive nature it takes. Many organizations, as well as important social areas such as family, marriage, and career counseling continue to deploy it for the in-depth perspective it offers the assessor in understanding the assessee.Generally, when we assess others; we fail to take the unique situation that led them to taking a decision…See More
2 hours ago
Adam Fleaming posted a blog post

When SSARS does and does not Apply to Preparation Engagements

The Statement on Standards for Accounting and Review Services (SSARS) is a section of the professional standards set out by The American Institute of CPA’s (AICPA), seeking to review earlier standards for reviewing and compiling financial statements and setting out the terms of engagement between the CPA’s and the parties. This section has…See More
22 hours ago
John Robinson shared their discussion on Twitter
22 hours ago

Forum

Risk Management Solutions

Risk is defined as the potential hazard, harm or side effect of an activity. Almost all activities come with some or another form of risk, which needs to be mitigated or eliminated. Risk management…Continue

Tags: risk, Banking, management, healthcare, Process

Started by John Robinson 22 hours ago.

Occupational Health and Safety 4 Replies

Health and safety are important aspects of an organisation’s smooth and effective functioning.  Did you know that workplace health & safety injuries cost Australian businesses over $60 billion…Continue

Tags: Safety, and, Health, Occupational

Started by WHS Solutions. Last reply by John Robinson yesterday.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Badge

Loading…

© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service