Overview: This session will start with the definition of a HIPAA Business Associate including what is and is not a Business Associate and what other kinds of relationships can exist besides a HIPAA Business Associate relationship. The role of business associates will be explored and how they are treated under HIPAA will be explained.
The new regulations will be reviewed and their effects on usual practices for Business Associates and their relationships with covered entities will be discussed. We will explain what a Business Associate needs to do differently under the new regulations, provide a policy framework for information security, show what policies need to be changed and how, and describe the required and recommended elements of a Business Associate Agreement.
Specific language must be incorporated in all HIPAA BA agreements, and agreements must be examined to ensure that liability, indemnification, and notification for incidents and breaches are properly covered. Any agreement signed since January 25, 2013 will need to meet the new standards by September 23, 2013; valid agreements and “evergreen” auto-renewing contracts already in place and signed under the old rules prior to January 25, 2013 have until September 23, 2014 to be updated.
This Webinar will help health information professionals understand what they have to do, and when, and what to keep in mind as they move forward, in order to be prepared for compliance with the new regulations. It will provide a comprehensive look at the changes in the law and prepare attendees for the process of incorporating the changes into how they do business in their facilities.