A Necessary Partnership: HIPAA Compliance and Business Associate Agreements

Published in Member Communities on May 21, 2019

data image

Your organization is likely always thinking of better ways to protect patients’ private information throughout the course of business. In order to do this best, it’s important that you establish a secure partnership with another organization in order to tighten security on patient data. If this seems like a foreign language to you and you don’t know where to start, we are here to help. Here’s everything you should know about this essential partnership.

What is a HIPAA Business Associate Agreement?

Let’s start with a brief definition of a business associate. A business associate is any organization or entity that you do business with where they handle your protected health information (PHI). Because you allow them to handle and accept the information, it creates potential HIPAA violations. The business associates are often subcontractors that are hired to maintain or transmit PHI. They could be a large organization or even a lawyer.

A business associate agreement (BAA) is a binding, legal document that holds both parties liable to any wrongful dissemination of patient data according to HIPAA. The agreement states that the business associate will protect the information or be liable to the information breach. The agreement or document should state the use and explain the cybersecurity precautions that will be taken to protect the data should there be a breach.  They should also agree to not knowingly share the data with anyone. If you want to know where you currently stand on issues of security, let us assess your organization’s risk and compliance.

Does my organization need this?

Before giving anyone outside of your organization access to patient data, it is imperative that you have a contract binding them to liability with a BAA. They will be held to the same standard as you when it comes to HIPAA regulations. Some examples of businesses you work with that should sign a BAA are: medical billing companies, shredders and technology providers.

According to the March 2019 Healthcare Data Breach Report from the HIPAA Journal Newsletter, there was roughly one healthcare data breach per day, which resulted in the private information of 912,992 individuals being exposed. It is in your organization’s best interest to have a BAA, as it creates a level of mutual liability and protection. When your partner knows that they will be held to HIPAA standards, they will be just as vigilant to protecting the data due to the level of accountability expected from them.

It’s important to cover all your bases to protect yourself and your patients with a competent partnership. Get Breach Protection now with VGM Technologies.


comments powered by Disqus

From Our Experts

VGM & Associates Release Series of Educational Resources For New Business Environment thumbnail VGM & Associates Release Series of Educational Resources For New Business Environment VGM & Associates have released three new resources to help members navigate the new business climate post-PHE. These resources include the latest edition of the VGM playbook, a remote guide to help members transition into a virtual working environment, and a re-opening checklist to help businesses prepare for the new environment. Washington Medicaid Standing Frames thumbnail Washington Medicaid Standing Frames In December 2019, Washington State Health Care Authority (HCA) changed their coverage policies for standing frames and stated that while they would continue to review and potentially authorize requests for standing frames for pediatric patients, they would no longer be considering or authorizing requests for standing frames for patients above the age of 21. VGM/U.S. Rehab staff worked closely with PAMES and other industry stakeholders to engage with WA Medicaid regarding this policy change. Business Development Strategies For COVID-19 Environment and Beyond thumbnail Business Development Strategies For COVID-19 Environment and Beyond In this episode, Dave Lyman, VP of Respiratory and Sales and Ryan Ball, Director of VGM Market Data, discuss business development strategies that providers can use during the COVID-19 environment. VGM and HME News Team Up for the HME Financial Benchmarking Survey thumbnail VGM and HME News Team Up for the HME Financial Benchmarking Survey HME News and VGM & Associates have teamed up again for this year's benchmarking survey. What does this mean for you? First, you won't be asked to complete a benchmarking survey from both organizations. Second, participants will get the survey results for free, but with the increased responses from our joint efforts, you'll get a more accurate picture of the HME industry. It's a win-win! DMEPOS Warriors: Sue Currence, BSN, RN, WOCN for Austin Pharmacy & Medical Supplies thumbnail DMEPOS Warriors: Sue Currence, BSN, RN, WOCN for Austin Pharmacy & Medical Supplies Meet Sue Currence, BSN, RN, WOCN for Austin Pharmacy & Medical Supplies, a VGM member since 2016! As a wound, ostomy, and continence nurse (WOCN), Sue has a vast knowledge of the wound care industry. We asked Sue about her experience with wound care and its importance as a specialty in the home medical equipment industry. DMEPOS Forecast: More Healthcare at Home thumbnail DMEPOS Forecast: More Healthcare at Home This episode gives listeners a glimpse of behind the scenes at VGM Fulfillment with President, Jeremy Stolz, and a look ahead for DMEPOS providers with VGM Group CEO, Mike Mallaro. Deadline to Apply for HHS Relief Payments (Round 2) June 3rd thumbnail Deadline to Apply for HHS Relief Payments (Round 2) June 3rd Those of you who received a payment from HHS between April 10 and April 24th (the payments that were automatically sent to you, that you didn't ask for or apply for) are able to apply for a second round of HHS Relief Payments. In fact, ONLY companies that received Round 1 HHS relief payments can apply for Round 2. I've included a few links below that are pertinent to the Round 2 application process. Order a Custom Video From VGM thumbnail Order a Custom Video From VGM As a VGM member, you make a huge impact on the lives of people in your community. Now, you can promote your services in a professionally made video. For just $90, you'll be able to post, share, and send your very own Bring It Home video. Hellman, a division of VGM Group, will add your logo to the end of the video, branding it as yours to use in any or all of your marketing.