Did you know? ALL Business Associates (BAs) are required to perform a HIPAA risk analysis to identify their potential Administrative, Physical and Technical security risks to electronic protected health information (ePHI). The Administrative Safeguards provisions require BAs to perform risk analysis as part of their security management processes. The results of the risk analysis will […]
Did you know? The Administrative Safeguards from the HIPAA Security Rule specifies implement a Security Awareness and Training for Business Associates (BA’s) program for ALL members of the workforce, including management and doctors too, as defined in 45 CFR §§ 164.308. However, it doesn’t say HOW to implement the security awareness and training program! Yes, […]
Healthcare Business Associates – Did You Know? The HIPAA Privacy, Security, and Breach Notification Rules apply to both Covered Entities (CEs) and their Business Associates (BAs). Healthcare providers and dentists, referred to as CEs, outsource many of their daily administrative activities to third parties and their subcontractors, referred to as BAs, to provide specific health […]
When a security incident happens and when they do, effective response planning can be a major factor of how significant an organization suffers operational or reputational harm or legal liability. Being able to respond to incidents in a systematic way ensures appropriate response steps are taken each time to help minimize the impact of breaches. […]
What if your Business Associates Had A Security Incident? Covered Entities (CEs) believe its impossible to determine whether the policies and procedures of their Business Associates (BAs) are adequate to respond effectively to a security incident. To complicate matters a large more believes their Business Associates would NOT notify them in the event of a […]