Healthcare EMR Blog

How To Create a HIPAA Compliant Business Associate Contract

May 28, 2013  |  by robinp  |  Blog, EMRSOAP Services, News

Under the HIPAA Omnibus rule, heath care providers have to be more careful than ever with how they handle protected information. This includes carefully managing any protected information that business associates might handle. According to the U.S. Department of Health and Human Services, a business associate is: “a person or entity, other than a member …

Read More

Agency in HIPAA Omnibus Rule

February 12, 2013  |  by benw  |  Blog

Agency in HIPAA Omnibus Rule Whether or not an entity qualifies as a Business Associate or an Agent could potentially be very important for a medical practice. Why?  Imagine the following scenario: You set up a relationship with a Business Associate (let’s say, an outsourced Billings provider).  The Billings provider has a data breach.  If …

Read More

Monetary Fines under HIPAA Omnibus Rule

January 22, 2013  |  by benw  |  Blog, News

  There are 4 categories of HIPAA violations that reflect increasing levels of culpability and negligence.  These levels correspond to corresponding tiers of penalties amounts.  The Table below shows these penalties amounts.   More fines Leon Rodriguez has said as much, but there’s going to be more fines under the HIPAA Omnibus Rule.  The very …

Read More

Business Associates under the HIPAA Omnibus Rule

January 18, 2013  |  by benw  |  Blog, News

Who’s a Business Associate under the HIPAA Omnibus Rule? The Definition of Business Associate has been slightly changed to explicitly designate more persons and organizations as business associates. Patient Safety Activities will be added to the list of function that a person can take on behalf of a covered entity that give rise to a …

Read More

EMRSoap’s HIPAA Omnibus Guide

January 18, 2013  |  by benw  |  Blog, News

HHS just released yesterday the new HIPAA Omnibus rule.  This rule was made to formally include the modifications required from the HITECH act, PSQIA, GINA, and others into HIPAA. The Omnibus rule is intended to make HIPAA compliance clearer.  Somewhat paradoxically, this clarity is coming initially in the form of a 563 page document. Part …

Read More