4 ways to ensure HIPAA compliance
from Government Health IT
Business associates are now explicitly subject to the same compliance requirements applicable to covered entities. And it is the responsibility of each CE to ensure that downstream contractors are doing what they are supposed to be doing in the realm of HIPAA compliance or risk being held liable for the failings of their BAs. It is therefore a good time for physician practices to re-examine their HIPAA compliance plans, the scrutiny applied to their BAs' HIPAA compliance programs, and their contractual agreements with BAs.
7701 Las Colinas Blvd., Ste. 800, Irving, TX 75063