Organizational Requirements

Episode 44: Know The Rules! Organizational Requirements

In this week’s “Know The Rules!,” I am diving a little deeper into the Organizational Requirements, part of the Administrative, Physical, and Technical Safeguards of the Health Insurance Portability and Accountability Act (HIPAA) security standards, 45 CFR § 164.314. As with all the standards in the HIPAA Security Rule, compliance with the Organizational Requirements standards […]

Business Associates Agreement

Episode 43: Know The Rules! Business Associate Agreement

What to look for in a Business Associate Agreement? The HIPAA Privacy, Security, and Breach Notification Rule require Covered Entities and Business Associates (BAs) to obtain a signed Business Associate Agreement (BAA) from each BA, and their subcontractors, to ensure appropriate safeguards are implemented to protect Protected Health Information (PHI) and electronic PHI (ePHI).   […]

Contingency Planning

Episode 42: Know The Rules! Contingency Planning

Contingency Planning, Yes You Need It!! The purpose of contingency planning is to establish strategies for recovering access to electronic protected health information (ePHI). In the event an organization experiences an emergency or other incident, such as power outages and/or disruption of critical business operations, any lost or damaged ePHI must be recovered and/or restored. […]

Medical Records

Stop Offshoring Medical Records

Offshoring Medical Records – Why You Should Care? Your Medical Records Could Be in India, Pakistan, and/or the Philippines! Why is it important that medical records remain with a workforce located in the United States? The Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules exist to protect your “individually identifiable health information” […]