New Rules for HIPAA and Business Associates

Event Information
Product Format
Prerecorded Event
Conference Date
Thu, Feb 07, 2013
60 minutes
Product Description

New Regulation For Business Associates Of HIPAA Covered Entities.

HIPAA Business Associates are now covered directly under the Privacy Rule’s use and disclosure limitations. Therefore,  the Security Rule’s safeguard provisions will be responsible for their own compliance with the regulations, and may be held directly liable for any violations of the regulations. The latest regulations also changes such things as who is a Business Associate: now sub-contractors of Business Associates are also treated as business associates, greatly expanding the pool of entities under regulation to some that may not even be aware they have become HIPAA Business Associates. The new requirements have a direct impact on what needs to be put into the business associate agreements you establish. In addition, other changes put into effect new rights of individuals to receive electronic copies of information held electronically, ask for certain restrictions on disclosures, and other capabilities that Business Associates may need to provide for their covered entity clients.

All kinds of covered entities, and now, business associates of covered entities as well, need to review their HIPAA compliance, policies, and procedures to see of they are prepared to meet the changes in the rules.  In addition, Business Associates have emerged as a leading source of health information breaches, and Jim will discuss what covered entities should do to ensure good practices by their Business Associates in order to avoid the considerable expense of breaches.

This 60-minute audio event our expert speaker Jim Sheldon-Dean will enlighten you on the new regulations and their effects on usual practices for Business Associates and their relationships with covered entities will be discussed. You'll learn about  the kinds of entities that now qualify as Business Associates and why it is important to carefully consider the designation before using it.  Jim will explain what a Business Associate needs to do differently under the new regulations, provide a policy framework for information security, show what policies need to be changed and how, and describe the required and recommended elements of a Business Associate Agreement.  The role of State Attorneys General in enforcing HIPAA and how it relates to Business Associates will be discussed. The new enforcement penalty structure and the latest plans for audits by HHS OCR will be described and a plan for being prepared for audits will be discussed.

Take a look at what's covered:

  • Business Associates have new requirements to comply with HIPAA privacy protections and security safeguards and are subject to enforcement and penalties directly by HHS.
  • Health Information Exchanges, Regional Health Information Exchanges, and e-Prescribing gateways are now considered to be Business Associates, and Sub-contractors of Business Associates are also considered to be Business Associates under the new rules.
  • The new regulations change the way individuals have access to their records, how much they can find out about who has accessed their records, and allow new rights to restrict certain disclosures, and Business Associates who supply EHR services will need to provide those capabilities.
  • Business Associate Agreements are now more important than ever, because breaches by Business Associates are becoming more common and carry tremendous expenses for the affected covered entities.
  • New limitations on marketing and fund-raising may change how entities can reach out to individuals, and may change business associate relationships.
  • New audit and penalty requirements increase the need to make sure covered entities and Business Associates are in compliance before HHS OCR knocks on the door.
  • The new penalty structure and the new audit program mean that you are more likely to be audited for HIPAA compliance, and you may be facing significantly higher penalties for non-compliance than ever before.
  • HHS is not the only enforcer of the new rules, State Attorneys General can also initiate HIPAA enforcement actions against covered entities and business associates under the law, regardless of the regulations.

Who should attend? Compliance Manager, HIPAA Officer, Chief Information Officer, Health Information Manager, Medical Office Manager, Medical Practice Lawyer, CFO, CEO, COO. Privacy Officer, Information Security Officer.


Order Below or Call 1-866-458-2965 Today

You can also order through:




About Our Speaker

Jim Sheldon Dean - HIPAA Compliance & Regulations Expert

Jim Sheldon-Dean is a healthcare compliance and HIPAA expert in the areas of privacy and security regulatory compliance and business process analysis. He is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of healthcare entities. Jim is a frequent speaker regarding HIPAA...   More Info
More Events By The Speaker

Why AudioEducator?
  • Save money on travel.
  • Meet your specific training needs.
  • Keep learning after the event.
  • Save time training your whole staff.
Join Our Mailing List
Our Accreditation Partners
Facebook Twitter Linkedin Youtube RSS Feeds Google Plus