July 5, 2016

Business Associates Beware! The Feds Are Coming!

If your organization is a business associate of a HIPAA covered entity (such as a health care provider or employee health benefit plan), you should know that the Department of Health and Human Services' Office of Civil Rights (OCR) is actively pursuing business associates for alleged privacy and information security violations.

This past week, Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) agreed to settle with OCR in an amount that came to more than $15,000 per patient!

This announcement comes just months after the launch of the second phase of OCR's much-anticipated audit program for business associates. Rather than awaiting reports of violations, the OCR is actively auditing business associates.

READ THE FULL ARTICLE ON MY OTHER BLOG: Business Associates of HIPAA Covered Entities Beware!

Matt Cordell is a North Carolina lawyer with expertise in HIPAA and health care privacy and information security. 

No comments: