HIPAA Security Rule for Business Associates | It’s About Policies and Procedures | Learn More

Posted by on in Regulatory Compliance
  • Font size: Larger Smaller
  • Hits: 1358
  • Subscribe to this entry
  • Print

The HIPAA Security Rule for Business Associates is largely dependent upon putting in place comprehensive operational, business specific, and information security policies and procedures. Add to the fact of the pronouncement of the Final Omnibus Rulings in January, 2013, HIPAA compliance has now taken on a whole new level of seriousness and attention for Business Associates. One of the biggest changes is the expansion of the original definition of an actual Business Associate, which is now defined as the following:

“…a person or entity that creates, receives, maintains or transmits protected health information to perform certain functions or activities on behalf of a covered entity”. Additionally, the following three (3) different types of service providers are now specifically identified as business associates under the final rule:

1. Health information organizations, e-prescribing gateways, and other people or entities that provide data transmission services to a covered entity with respect to protected health information and that require access on a routine basis to such protected health information
2. People or entities that offer personal health records to one or more individuals on behalf of a covered entity
3. Subcontractors that create, receive, maintain or transmit protected health information on behalf of business associates

HIPAA Security Rule for Business Associates | It’s About Policies and Procedures 
It means that more and more companies are being swept up and into the HIPAA regulatory compliance framework, which also means putting in place dozens of comprehensive operational, business specific, and information security policies and procedures. If you look at the actual HIPAA Security Rule, which is contained in sections §164.302 through §164.318, pay attention to section’s 164.308 (Administrative), 164.310 (Technical), and 164.312 (Physical) safeguards, which require upwards of fifty (50) – that’s right – 50 different policies, procedures.  Learn more about NDB's HIPAA expertise and the complimentary HIPAA Policy Packets we provide to our clients.

HIPAA Security Rule for Business Associates | Call for Fixed Fee Quote 
HIPAA compliance is growing by leaps and bounds for Business Associates, Covered Entities, and all other related parties. What’s needed are expert consulting services, one that offers comprehensive policies and procedures templates, along with industry leading guidance and support from trusted HIPAA experts. Call Charles Denyer today at 1-800-277-5415, ext. 705 or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more and receive a competitive, fixed fee.  Learn more about NDB's HIPAA expertise and the complimentary HIPAA Policy Packets we provide to our clients.

HIPAA Compliance Services

0
From I.T.consultants to seasoned regulatory compliance auditors, our firm's wide expertise is diverse, cross-functional, and highly experienced in all our service lines.

From I.T.consultants to seasoned regulatory compliance auditors, our firm's wide expertise is diverse, cross-functional, and highly experienced in all our service lines.