The deadline for executing a HIPAA Omnibus Rule-compliant Business Associate Agreement (BAA) looms just 2 short weeks from today. What can a busy covered entity (CE) or business associate (BA)
Continue Reading Countdown to September 22nd — Shortcuts for Business Associate Agreement Compliance
Omnibus rule
Two Months to Amend HIPAA Business Associate Agreements for Omnibus Compliance, But Beware the Bare Bones BAA
Does your business associate agreement (BAA) reflect your business deal, or is it a bare bones HIPAA compliance document?
Now is the time to check. The HIPAA “Omnibus Rule” published…
Continue Reading Two Months to Amend HIPAA Business Associate Agreements for Omnibus Compliance, But Beware the Bare Bones BAA
Embarrassing Fact: Few Seem to Understand HIPAA or the ACA (at least when it comes to individual health coverage to be purchased on an Exchange)
I read a recent Forbes.com post by Rick Ungar (“Claims That Obamacare Website Violates Health Privacy Reveals Embarrassing Fact – GOP Does Not Understand HIPAA or Obamacare”) that revealed a…
Continue Reading Embarrassing Fact: Few Seem to Understand HIPAA or the ACA (at least when it comes to individual health coverage to be purchased on an Exchange)
Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #10
Here’s the official 10th tip to help you comply with today’s Omnibus Rule deadline. However, since I had to make TIP TWO into TIPs TWO through SEVEN when I…
Continue Reading Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #10
Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #4 and #5 (aka #8 and #9)
Where did the time go? Today’s the day – September 23, 2013. This is compliance day for most of the Omnibus Rule changes. I had a feeling this deadline would…
Continue Reading Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #4 and #5 (aka #8 and #9)
Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #3
Unless the Department of Health and Human Services (HHS) makes another last-minute, litigation-inspired decision to delay the September 23, 2013 compliance date, we’re well into the 10-day countdown for compliance…
Continue Reading Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #3
Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #2
Unless the Department of Health and Human Services (HHS) makes another last-minute, litigation-inspired decision to delay the September 23, 2013 compliance date, we’re well into the 10-day countdown for compliance…
Continue Reading Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance #2
Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance
Unless the Department of Health and Human Services (HHS) makes another last-minute, litigation-inspired decision to delay the September 23, 2013 compliance date, we’re on a 10-day countdown for compliance with…
Continue Reading Ten Days, Ten Tips – Countdown to Omnibus Rule Compliance
The Parade of Major Reported PHI Breaches Jumps Ahead to 646 – Part 2: Business Associates Continue to Augment the Numbers
This blog series has been following breaches of Protected Health Information (“PHI”) that have been reported on the U.S. Department of Health and Human Services (“HHS”) ever-lengthening parade list (the …
Continue Reading The Parade of Major Reported PHI Breaches Jumps Ahead to 646 – Part 2: Business Associates Continue to Augment the Numbers
Do I really need to report (or get a report on) every “Security Incident” under the sun to comply with HIPAA?
Under HIPAA, where do we draw the line between a run-of-the-mill, ordinary garden variety “security incident” and a “presumed breach” when it comes to reporting PHI events? How do we describe these types of reporting obligations in business associate agreements?
Continue Reading Do I really need to report (or get a report on) every “Security Incident” under the sun to comply with HIPAA?