New updates to the HIPAA regulations now being enforced contain numerous changes , for the most part, on The HITECH Act passed in 2009. Some of the most significant changes have to do with how Business Associates of HIPAA covered entities are treated under the regulations. HIPAA Business Associates are now covered directly under the Privacy Rule’s use and disclosure limitations, the Security Rule’s safeguard provisions, and the Breach Notification Rule’s notification requirements, will be responsible for their own compliance with the regulations, and may be held directly liable for any violations of the regulations.
The latest regulations also change such things as to who is a Business Associate: the definition now casts a much wider net of healthcare business activities, including any business that creates, receives, maintains, or transmits any Protected Health Information on behalf of a HIPAA Covered Entity or Business Associate, and even sub-contractors of Business Associates are also treated as business associates, greatly expanding the pool of entities under regulation to some that may not even be aware they have become HIPAA Business Associates.
Because the new regulations have expanded the obligations of HIPAA Business Associates, it is now more important than ever to carefully consider whether a BA designation is appropriate or not – Business Associate Agreements are not to be entered into lightly. The new requirements have a direct impact on what needs to be put into the business associate agreements you establish. Plus, other changes put into effect new rights of individuals to receive electronic copies of information held electronically, ask for certain restrictions on disclosures, and other capabilities that Business Associates may need to provide for their covered entity clients. The business associates of covered entities now have to review their HIPAA compliance, policies, and procedures to see if they are ready to meet the changes in the rules. Recently, the Business Associates have emerged as a top source of health information breaches.
Join Jim Sheldon-Dean in this informative session to get insights on what covered entities should do to guarantee good practices by their Business Associates so as to avoid the considerable expense of breaches. He will shed light on the new regulations and their effects on usual practices for Business Associates and their associations with covered entities.
In this 60 minute audio session, Jim will:
The speaker will answer your questions after the session to help you with the doubts and queries you may have
Who should attend Compliance Manager, HIPAA Officer, Chief Information Officer, Health Information Manager, Medical Office Manager, Medical Practice Lawyer, CFO, CEO, COO. Privacy Officer, Information Security Officer
- Jim Sheldon-Dean
- Jim Sheldon-Dean
- Kim Stanger
- Michael-Marron Stearns
- Thomas J. Force
Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis, He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...
More Events By The Speaker