Business Associates Beware!

Quietly, the Feds recently set the stage for a massive expansion of enforcement of privacy rules under the Health Insurance Portability and Accountability Act (HIPAA).

The message: If business associates have potential access to any private health information, they should be prepared for the Feds to take enforcement action against them only for any breaches of privacy. In a new memo, the U.S. Office for Civil Rights (OCR) underlines the word “only”.

Translation: The Feds’ authority to go after a business associate under HIPAA is nothing new, but, in practice, business associates typically came under scrutiny as an offshoot of an inquiry into a healthcare provider or insurer. Now the Feds are signaling a shift in emphasizing a focus on direct liability of a business associate.

“As part of the Department’s effort to fully protect patients’ health information and their rights under HIPAA, OCR has issued this important new fact sheet clearly explaining a business associate’s liability,” said OCR Director Roger Severino.

As a providers, it’s important to make sure your business associates are protecting the privacy of your clients — and that they understand the extent of their responsibility.

Upcoming Webinars

[add_eventon_list hide_month_headers="no" hide_empty_months="yes" event_order="ASC" number_of_months="3" ]

Train Senior Leaders in Privacy & Data Security Management

November 13, 2023 No Comments

Managing privacy and data security across an organization requires its own expertise — and adequate training designed for privacy managers is essential. In fact, federal

Here’s Guidance on Privacy Security from Remote Locations

November 13, 2023 No Comments

Remote work presents its own set of security risks, relating to the safe keeping of private information. However, the use of Virtual Private Networks and

New Social Media Course

November 10, 2023 No Comments

MyHIPAA Guide is offering a new social media course that will help you protect your organization from potential privacy violations that result from social media

MyHIPAA Guide 2023 Privacy and Security Course Catalog

June 30, 2021 No Comments

Interested in privacy and security training under the Health Insurance Portability and Accountability Act (HIPAA)? Our course catalog includes more than 25 courses on all

Upcoming Events

Username or Email

Password

Keep me signed in

Lost your password?

10 Steps to Compliance

MyHIPAA Guide helps HIPAA-covered organizations understand what they need to do on a daily basis. Subscribers gain access to a comprehensive, human-centered HIPAA program.

CALL US TODAY: (234) 281-4310

MyHIPAA Guide

Product

Discover

DISCLAIMER: MyHIPAA Guide content, including newsletters, is for informational purposes only. MyHIPAA Guide is not intended as legal advice or as a recommendation for a provider’s specific circumstances, and it is not intended as an exhaustive or definitive source on protecting health information from privacy and security risks. Providers and professionals seeking expert advice should consult an attorney and/or a risk assessment professional.

NOTICE TO READERS: We will do our best to report updates on HIPAA rules as quickly as possible following public notifications. In submitting questions or comments to MyHIPAAGuide.com, NEVER SEND THE PROTECTED HEALTH INFORMATION OF A PATIENT.

Copyright © by M.E.D. Media Mart LLC - Published by M.E.D. Media Mart LLC.