Why you need a HIPAA-compliant business associate agreement Print
Written by Vitale Health Law   
Monday, 01 May 2017 00:00

The recent announcement by The Department of Health and Human Services' Office for Civil Rights (OCR) that it agreed to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) with The Center for Children's Digestive Health (CCDH) should serve as a lesson to other healthcare organizations about the need to obtain signed, HIPAA-compliant business associate agreements with all vendors before disclosing any protected health information.

Last month, CCDH, a seven-center pediatric subspecialty practice based in Park Ridge, Illinois, agreed to pay OCR $31,000 to resolve potential HIPAA violations. CCDH also agreed to adopt a corrective action plan which includes updating policies and procedures, conducting staff training on said policies and procedures and ensuring one or more employees are made responsible for ensuring HIPAA-compliant business associate agreements obtained from all business associates.

Read More