Call Us! (800)704-3394 / Contact Us /


How to Set Up and Administer a Business Associate Management Program

Covered Entities, Business Associates and their agents and subcontractors who create, received, maintain and transmit ePHI for a “chain of custody” or “chain of trust” when it comes to HIPAA HITECH regulations. Responsibilities for safeguarding ePHI exist for all of these organizations. Sometimes the most security organizations suffer the embarrassment (HHS Wall of Shame) and liability of data losses due to poor controls outside of their organizations.

Are you protected? Learn about a program to manage relationships and mitigate risks by aligning your Privacy, Security and Breach Notification goals…

Attend this complimentary webinar on:

Friday, September 27, 2013 – 11:00 a.m. – 12:00 p.m. CDT

Register Now

Sign up for email notifications about webinar events.  You can also follow us on Twitter, join us on LinkedIn or Like our Facebook page.

The Privacy and Security Alignment Challenge

The deadline for HIPAA Security Rule compliance for Covered Entities (CEs) was April 2005! For Business Associates (BAs), the date was February 2010 thanks to The HITECH Act, when they become statutorily obligated to comply with the HIPAA Security Rule. The Notice of Proposed Rulemaking (NPRM) published in the Federal Register on July 14, 2010 entitled “Modifications to the HIPAA Privacy, Security, and Enforcement Rules Under HITECH” proposes that subcontractors be included in the definition of Business Associates.
Whether you’re motivated to be compliant with the regulations, wish to implement appropriate and reasonable safeguards because it’s the right thing to do or believe implementing privacy and security controls is a basic risk management requirement, OR all of the above, now is the time to act.

CEs, BAs and their respective subcontractors create a “chain of trust” or “custody of trust” when it comes to creating, receiving, maintaining or transmitting Protected Health Information (PHI) and electronic PHI (ePHI). With the surge in the amount of PHI being exchange, ensuring its protection is a huge challenge that depends on alignment of privacy and security goals. Most CEs and BAs are not prepared. Are you?

 

The Solution

If you receive, store, process or transmit ePHI and/or depend on others who do so, you should attend this webinar on How to Align CE-BA-Subcontractor HIPAA Goals. Whether you are a CE, BA or subcontractor, this webinar will help you:

  1. Communicate your commitment to privacy and security of all PHI
  2. Engage with business partners directly on compliance requirements
  3. Clarify requirements to do business with one another
  4. Clarify current requirements under HIPAA and HITECH
  5. Find resources to assist CEs, BAs and Subcontractors manage partner relationships

The webinar also briefly reviews the HIPAA-HITECH regulatory requirements related to business relationships and organizational requirements of CEs, BAs and Subcontractors.

Attend this complimentary webinar on:

Friday, September 27, 2013 – 11:00 a.m. – 12:00 p.m. CDT

Register Now

Sign up for email notifications about webinar events.  You can also follow us on Twitter, join us on LinkedIn or Like our Facebook page.

The Results

This materials and content presented in the webinar has been used by organizations of all sizes and is purposefully designed to be able to be able to be used by the largest CEs and BAs (e.g., hospitals, insurors, care management firms, etc) to the smallest BAs and subcontractors (e.g., small medical practices, clinics, dental offices, medical billing companies, IT companies, etc.). You will receive practical, actionable advice and approaches to ensuring your privacy and security goals are aligned.

Sadly, many CEs have ignored the HIPAA Security law for the last five years. A majority of BAs are not even aware of their new obligations under the law. Now, with the majority totally unaware of their requirements, Subcontractors are in the line of sight of the regulators. Will compliance change? — Most experts think so and so do we! The Health Information Technology for Economic and Clinical Health (HITECH) Act has been called a “game changer” because it significantly strengthens many aspects of the HIPAA Security Rule (and Privacy Rule), including the penalties that the U.S. Department of Health and Human Services (HHS) could impose for violations of the HIPAA rules as well as enforcement. As a visible demonstration of seriousness, HHS has begun posting Data Breach Notifications/Violations, required by law, on its web site.

If you are a “Business Associate” or “Covered Entity” or a “subcontractor” that creates, receives, maintains or transmits ePHI, you will benefit from this webinar.

 

Who Should View this Webinar?

Business leaders and managers with responsibility for Risk Management, Corporate Compliance, and HIPAA-HITECH Privacy and Security compliance should attend. CEOs, COOs, CFOs, Chief Compliance Officers, Chief Risk Officers, Chief Privacy Officers, Chief Security Officers, Chief Information Officers.

Agenda:

This session is offered as a 60-minute webinar using the GoToWebinar platform. The open format encourages questions during and after the session. Attendees will receive the presentation materials. In this live session, participants will cover:

  • Specific requirements in the regulations
  • HIPAA Security Final Rule – Quick Review
  • Major Changes from The HITECH Act
  • HHS “Wall of Shame”
  • HIPAA Contingency Planning Standard
  • Data Backup Implications
  • HIPAA Security Compliance Resources
  • Best Practices and Recommendations
  • Tools / solutions / resources to create a data backup and recovery plan

This webinar is designed to help CEs and BAs understand and act on the specific data backup and recovery requirements in the HIPAA Security Final Rule.

Attend this complimentary webinar on:

Friday, September 27, 2013 – 11:00 a.m. – 12:00 p.m. CDT

Register Now

Sign up for email notifications about webinar events.  You can also follow us on Twitter, join us on LinkedIn or Like our Facebook page.

Presented by: Bob Chaput, CEO – Clearwater Compliance LLC

See our list of upcoming live webinars, or check out our on-demand webinars with resources you may have missed.