Organizations, known as covered entities, subject to HIPAA regulations already have a difficult time preventing and detecting unauthorized access to patient information within their own organizations – now they have the added burden of managing the access of business associates. This was the case with Meritus Health, who recently notified the Department of Health and Human Services’ Office for Civil Rights that one of their business associates had inappropriately accessed patient information. … [Read more...]
PHI – Protected Health Information
HIPAA, the Health Insurance Portability and Accountability Act, directly affects all organizations that directly maintain and transmit protected health information. These include: health care providers hospitals physician practices dental practices health plans laboratories health care clearinghouses pharmacies, etc. In addition, business associates who work with these organizations and have access to protected health information, or PHI, now also fall under the HIPAA … [Read more...]