HIPAA Hosting: What’s in a Business Associate Agreement?

You’re a covered entity (your company processes, stores or transfers any type of patient information), and you’re outsourcing your HIPAA hosting services to a third party (an IT vendor, a billing company, etc.).

But before you can do that, you need to sign a business associate agreement (BAA) with your business associate (BA), according to the HIPAA Privacy Rule. But what’s in a business associate agreement contract?

The U.S. Department of Health and Human Resources (HHS) has a sample business associate contract available on its site listing all the provisions for those that are curious.

While this shouldn’t be copied precisely and is more of a guide than a complete document, it does offer insight into the general terms that a BAA should address, with the addition of customized provisions specific to certain companies’ needs. A summary of the primary provisions include:

Obligations and Activities of Business Associate
- No use or disclosure of protected health information (PHI) unless it’s permitted or required by law.
- Must use proper safeguards to prevent use or disclosure of PHI.
- Mitigation in the event of a data breach.
- Must report any use or disclosure of PHI.
- Ensures others (subcontractors) agree to the same BAA.
- Allows CE access PHI.
- Must create documented HIPAA policies and procedures.
- Document any PHI disclosures.
Permitted Users and Disclosures by Business Associate
- Specifies when BA can use or disclose PHI on behalf of the CE.
Specific Use and Disclosure Provisions (if applicable)
- When or why a BA would disclose or use any PHI, to report law violations, with CE permission, or to provide any kind of data aggregation reports to the CE).
Obligations of Covered Entity
- The CE will notify the BA of any changes in permission (including restrictions or revocation) of the individual to use or disclose PHI.
Permissible Requests by Covered Entity
- Terms and effective dates
- How PHI will be handled after termination (returned or destroyed)
- Reasons for termination

READ

Cybersecurity And HIPAA Compliance Go Hand In Hand: Here's Why

If you’re a covered entity, protect your company and your patients/clients by signing a thorough BAA. As a best practice recommended for HIPAA compliance, it will only strengthen your ability to pass a HIPAA audit, should the auditors come to your door.

Have other questions about compliance and BAAs? Read our HIPAA FAQ to find answers about BAs, hosting and agreements. Source: Business Associate Contracts

How to Find the Best Hosting Provider for Your Medical Website

Will The Surge In Celebrity Surrogacy Change The Business Of Fertility?

4 Strategic Approaches To Reducing Hospital Errors

Think Patients Are Bad At Communicating? Rethink Your Systems

Entrepreneurs Must Integrate Mission-Driven Strategic Investors

6 Healthcare Financial KPIs You Need for 2017

Determining the ROI on Aquatic Therapy in Your PT Practice

How to Monetize Mobile Healthcare Apps

4 Strategic Approaches To Reducing Hospital Errors

Think Patients Are Bad At Communicating? Rethink Your Systems

8 Of The Most Bizarre Medical Malpractice Cases Out There

EHRs And Malpractice Risk: A Serious Concern For Hospitals

People Suffering From Hearing Loss Can Be Helped By Technology

6 Ways Mobile Applications Bring Value to Patients and Doctors

How to Find the Best Hosting Provider for Your Medical Website

How Medical Advancements Could Change Hepatitis B Diagnoses In 2019

Why Blockchain In Healthcare Could Be A Game Changer For EHRs

Here’s Why The Lab Automation Market Is Growing

8 Of The Most Bizarre Medical Malpractice Cases Out There

How AI In Healthcare Can Improve Patient Outcomes

6 Ways Mobile Applications Bring Value to Patients and Doctors

The Role Of The Internet Of Medical Things In Healthcare

All The Ingredients You Need For A Successful Health Insurance App

10 Digital Health Services That Could Shape The Future Of Healthcare

Technological Advancements in The Medical Field That You Should Keep An Eye On

mHealth Apps And Digital Doctors: The Future Of The Healthcare Sector?

EHR For Rural Hospitals: Criteria And Access

How Big Data Can Be Used To Prevent Fatal Heart Attack

4 Top Reasons Why App Developers Love Apple Health Records API

Should Healthcare Care About Branding?

How can Healthcare Professionals Manage their Reputation Online

How to Handle Negative Physician Reviews and Feedback

People Suffering From Hearing Loss Can Be Helped By Technology

The Impact Of Healthcare Technology On Employees

3 Top Medical Advances To Expect In The Near Future

Revolutionary Therapeutics For Neuroendocrine Carcinoma Are Underway

People Suffering From Hearing Loss Can Be Helped By Technology

Revolutionary Therapeutics For Neuroendocrine Carcinoma Are Underway

Is The Future Of Injectable Drug Delivery In Needle-Free Devices?

5 Important Things To Expect From Medtech In 2019

People Suffering From Hearing Loss Can Be Helped By Technology

3 Top Medical Advances To Expect In The Near Future

Top 5 Reasons For Blockchain Implementation In Healthcare In 2019

How Does Blockchain Guard Healthcare Information?

How Medical Advancements Could Change Hepatitis B Diagnoses In 2019

Here’s Why The Lab Automation Market Is Growing

Four Types Of Age Related Eye Diseases That Require Vision Therapy

Demand For Synthetic Camphor Is About To Increase – Here’s Why

Noted Endocrinologist Indicates Testosterone Therapy Could Minimize Bone Loss

Try These Top Effective Skincare Routines To Live By In 2019

Stages and Warning Signs of Addiction Relapse

Baby Boomer’s Guide to Dealing with Knee Problems

5 Ways a Bad Mattress Negatively Affects Your Health

Is It Time to See a Cardiologist?

Can Artificial Intelligence Diagnose Illnesses Better Than Other Methods?

The Complicated Rise of Interventional Cardiologists

How Big Data Can Be Used To Prevent Fatal Heart Attack

Take These 4 Important Steps For Healthy And Happy Aging

Living Alone When You’ve Been Diagnosed With Alzheimer’s

A Guide To Healthy Aging And Happier Golden Years

10 Early Dementia Signs You Need To Be Aware Of

How a Meal Delivery Subscription Service Can Help You Reach Your Weight Loss Goals

7 Important Health-Related Reasons To Burn Excess Fat

The Weight Conscious Doctor: Why Sensitivity Matters

Top 5 Reasons Why you’re Not Losing Weight on Your Diet

Baby Boomer’s Guide to Dealing with Knee Problems

The Woes Of Modern Posture Struggles And Poor Furniture Support

What Is Scoliosis? 4 Ways To Treat It

Do it like Disney: Developing Orthopedic Centers of Excellence

Radiology as an Enterprise Model for Collaboration

Relationship Between Clinical Decision Support Systems (CDSS) & Radiology Must Evolve

Diagnostic Reading #33: Five Must-Read Articles from the Past Week

2015 CPT Coding Changes and Your Radiology Practice

People Suffering From Hearing Loss Can Be Helped By Technology

Here’s How To Boost Energy Levels Through Your Diet

Try These Top Effective Skincare Routines To Live By In 2019

Stages and Warning Signs of Addiction Relapse

Here’s How To Boost Energy Levels Through Your Diet

Try These Top Effective Skincare Routines To Live By In 2019

Take These 4 Important Steps For Healthy And Happy Aging