business associate Archives - Page 4 of 7

Children’s Health Records and You: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Parents who have minor children have legitimate concerns about their children’s health records as used, disclosed, and maintained by their health care providers, insurers, and .. read more

On October 23rd, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: business associate, children's health records, compliance, HHS, HIPAA, HIPAA compliance, HIPAA right of access, HIPAA violation, HITECH, Jonathan P. Tomes, Notice of Privacy Practices, OCR, OCR investigation, Office for Civil Rights

New Sample BAA to Consider: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Because I have a number of current California clients and past ones who may be Premium Members, I have revised my sample Business Associate Agreement .. read more

On August 10th, 2016, posted in: HIPAA Compliance Blog by Alice Tags: BAA, breach, breach notification, business associate, business associate agreement, compliance, downstream business associate, HIPAA, HIPAA compliance, HITECH, HITECH Act, Jonathan P. Tomes, subcontractor, upstream business associate

Not-for-Profit Business Associate—No Risk Analysis: $650,000 Settlement: HIPAA & HITECH Act Blog by Jonathan P. Tomes

The Catholic Health Care Services of the Archdiocese of Philadelphia (“CHCS”), a not-for-profit business associate, was the corporate owner of six nursing homes and provided .. read more

On July 4th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: audit, breach, business associate, compliance, HHS, HIPAA compliance, Jonathan P. Tomes, not-for-profit, risk analysis, Security Rule

Illinois Joins California in Affording More Protection to Personal Information: HIPAA & HITECH Act Blog by Jonathan P. Tomes

In May, the Governor of Illinois, Bruce Rauner, signed amendments to the Illinois Personal Information Protection Act (“PIPA”), 815 ILCS 530/1 et seq., expanding the .. read more

On June 26th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach notification, business associate, compliance, data breach, encryption, HHS, HIPAA compliance, HIPAA policies, HIPAA violation, HITECH, HITECH Act, Illinois, Jonathan P. Tomes, PIPA, Privacy Rule, Security Rule

OCR Issues Revised Audit Protocol: HIPAA & HITECH Blog by Jonathan P. Tomes

In April 2016, the U.S. Department of Health and Human Services (“DHHS”) Office for Civil Rights (“OCR”) issued its updated Phase 2 Audit Protocol. Its .. read more

On May 10th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: audit, business associate, EPHI, HHS, HHS audit, HIPAA, HIPAA compliance, HIPAA policies, Jonathan P. Tomes, OCR, Office for Civil Rights

Another HIPAA Breach Settlement for Not Having Had a Business Associate Agreement in Place: HIPAA & HITECH Act Blog by Jonathan P. Tomes

My Vice President and editor, Alice M. McCart, always says that she hates it when I’m always right. I always mess with her by saying, .. read more

On April 22nd, 2016, posted in: Uncategorized by Jonathan Tomes Tags: Alice M. McCart, breach, business associate, HHS audit, HIPAA compliance, HIPAA violation, HITECH, Jonathan P. Tomes

$1.55 Million Settlement Stresses Importance of Business Associate Agreements: HIPAA & HITECH Act Blog by Jonathan P. Tomes

A recent settlement in lieu of a civil money penalty underscores the importance of having business associate agreements in place with entities that perform a .. read more

On April 3rd, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach notification, business associate, compliance, data breach, HIPAA, HIPAA compliance, HITECH, Jonathan P. Tomes, OCR investigation, Office for Civil Rights, Privacy Rule, risk analysis, Security Rule

Two New Items for You in Premium Member Section: Volunteer Policy and Two More Chapters of HITECH Hysteria: HIPAA & HITECH Act Blog by Jonathan P. Tomes with Guest Commentator Alice M. McCart

For those of you who have been waiting for a volunteer policy separate and apart from Jon’s Workforce Security Policy, you’re in luck. It is .. read more

On March 13th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, business associate, compliance, HIPAA compliance, HITECH Act, HITECH Hysteria, Jonathan P. Tomes, volunteer policy

California Determines What Is Reasonable and Appropriate for Securing Health Information: HIPAA & HITECH Act Blog by Jonathan P. Tomes

HIPAA requires covered entities and business associates to implement reasonable and appropriate security measures in § 164.308(a)(1)(ii)(B), the risk management Administrative safeguards, but although it does .. read more

On March 10th, 2016, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach, business associate, compliance, criminal HIPAA violation, data breach, EHR, emr, encryption, HHS, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA training, HIPAA violation, HITECH, HITECH Act, identity theft, Jonathan P. Tomes, mental and behavioral health, Notice of Privacy Practices, OCR, OCR investigation, PHI, privacy, Privacy Rule, reasonable and appropriate, risk analysis, Security Rule

Shooting, God Forbid, on the Premises of a Health Care Provider or Business Associate, Including HIPAA Aspects: HIPAA & HITECH Act Blog by Jonathan P. Tomes

Yet another mass shooting, this one in a Social Services Agency in San Bernardino, CA, coupled with my being asked to weigh in on protecting .. read more

On December 17th, 2015, posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: Alice M. McCart, bomb threat policy, business associate, compliance, HHS, HIPAA, HIPAA compliance, HIPAA policies, HIPAA violation, HITECH, HITECH Act, Jonathan P. Tomes, risk analysis, Security Rule, shooting

business associate Archives - Page 4 of 7 - Veterans Press, Inc.