Breaking Down The HIPAA Rule Changes: Part 2 Of 5 - Changes Affecting Who Is A Business Associate And New Business Associate Obligations

In This Issue:

- Expansion of, Clarifications to, and Explicit Inclusions in the Definition of BA

- BAs’ Direct Liability Under the Final Rule

- BAAs: Required Provisions Under the Final Rule and the Compliance Date

- Excerpt from Expansion of, Clarifications to, and Explicit Inclusions in the

Definition of BA:

The Final Rule included several additions and clarifications to the HIPAA definition of BA. Identifying persons and entities which meet the definition of BA is important because the Final Rule clarified that a person or entity becomes a BA by meeting the definition of a BA and by creating, receiving, maintaining, or transmitting protected health information on behalf of a Covered Entity, not by contracting with the Covered Entity and entering into a BAA. Moreover, the type of protected health information involved does not matter; if the information is tied to a Covered Entity, it is considered protected health information by definition (even if it is, for example, strictly limited to demographic information). Whether or not a person or entity is a BA is significant because as will be further discussed below, BAs have direct liability under the Final Rule for not complying with certain HIPAA requirements.

Please see full Alert below for more information.

LOADING PDF: If there are any problems, click here to download the file.

Written by:

Published In:


DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Polsinelli | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »

All the intelligence you need, in one easy email:

Great! Your first step to building an email digest of JD Supra authors and topics. Log in with LinkedIn so we can start sending your digest...

Sign up for your custom alerts now, using LinkedIn ›

* With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name.