| Business associate is an individual, group or an | | | | Associate to report loss of unsecured data to the |
| organization which participates or performs some | | | | individual patients and/or the public |
| activities on behalf of the Covered Entity in a | | | | media,depending upon scale of the violation. |
| capacity as a business partner and is not member | | | | The new regulatory requirements make it |
| of the workforce of the Covered Entity. The | | | | necessary for the Business Associate to |
| Privacy Rule lists some of the functions or | | | | thoroughly carry out the risk analysis for their |
| activities, as well as the particular services, which | | | | systems and infrastructure to know the existent |
| makes a person or entity Business Associate, if | | | | loopholes in the security. The next step is to |
| the activity or service involves the use or | | | | develop appropriate policy which effectively |
| disclosure of protected health information. The | | | | removes the security loopholes by incorporating |
| types of functions or activities that may make a | | | | technical security measures like email encryption, |
| person or entity a business associate includes | | | | user account management, auditing and a proper |
| payment or health care operations activities, as | | | | disaster backup plan. |
| well as other functions or activities regulated by | | | | Henceforth the Business Associate will also play a |
| the Administrative Simplification Rules. | | | | more responsible and active role in secure |
| The new amendment to HIPAA Privacy and | | | | management of the patient health information, |
| Security rule recently passed by Health | | | | which earlier, before this amendment, was sole |
| Information Technology for Economic and Clinical | | | | responsibility of the Covered Entity. |
| Health Act (HITECH Act) and which came into | | | | Business Associate plays important role in |
| effect from February 17, 2010 makes it | | | | preserving the privacy of the patient health |
| mandatory for all the Covered entities to revise | | | | information. |
| their Business Associate Contract. This has | | | | About emPoweremPower is a leading provider of |
| increased the scope of the law as more entities | | | | comprehensive Healthcare Compliance Solutions |
| are obliged to follow the HIPAA compliance norms. | | | | through Learning management system (LMS). Our |
| At same time the amendment adds more | | | | mission is to provide innovative security solutions |
| responsibilities on the existing Business Associates. | | | | to enable compliance with applicable laws and |
| The Covered Entities and their existing Business | | | | regulations and maximize business performance. |
| Associates now have to re-negotiate their existing | | | | We provide range of courses to manage |
| contracts to achieve HIPAA compliance. The | | | | compliance required by regulatory bodies such as |
| Business Associates now on, have to take adopt | | | | OSHA, HIPAA, Joint commission and Red Flag Rule |
| additional procedures to completely fulfill the | | | | etc. Apart from this emPower also offers custom |
| physical, administrative, technical and | | | | demos and tutorials for your website, business |
| documentation requirements of the rule. The | | | | process management and software |
| amendment makes it mandatory for the Business | | | | implementation. |