News & Analysis as of

Business Associates Cloud Computing

Business Associates can refer broadly to individuals engaged in business relationships with one another. However, in the HIPAA context, the term has a specific statutory meaning and those characterized as... more +
Business Associates can refer broadly to individuals engaged in business relationships with one another. However, in the HIPAA context, the term has a specific statutory meaning and those characterized as business associates have expanded data protection obligations and duties. Essentially, a business associate under HIPAA is a person or entity that performs certain functions or services which necessitates exposure to protected health information on behalf of a covered entity. Typical business associate functions include: claims processing or administration, data analysis, billing, etc.    less -
McGuireWoods LLP

HIPAA in Due Diligence (Part II): Cloud Server Data and HIPAA Compliance

McGuireWoods LLP on

Welcome back to our three-part series examining ways to efficiently identify, address and mitigate gaps in HIPAA compliance in transaction diligence. In Part I of this series, we discussed four key diligence questions upon...more

Foley & Lardner LLP

Critical Considerations for Service Level Management

Foley & Lardner LLP on

In the last couple of weeks you have certainly been thinking about your New Year’s resolutions. As 2018 kicks off, there’s no better time to the think about how to manage your suppliers and your procurement process. Service...more

Winstead PC

Is it HIPAA or HIPPA? Either way, it still applies.

Winstead PC on

I have negotiated hundreds of SaaS agreements for dozens of software companies and I always hated when the company on the other side was a healthcare provider. Invariably, they would bring up Protected Health Information...more

BakerHostetler

Cloud Service Providers Beware, You May Be Subject to HIPAA Without Knowing It

BakerHostetler on

The use of cloud service providers has exploded in the past several years. According to estimates from Gartner, the market for cloud services is expected to reach $204 billion in 2016. But the use of cloud service providers...more

Ballard Spahr LLP

HHS Designates Cloud Service Providers as Business Associates Under HIPAA

Ballard Spahr LLP on

Cloud service providers that process electronic protected health information (ePHI) are business associates under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), even if the PHI is encrypted and the...more

Ward and Smith, P.A.

Clouding the Issue: Impact of Cloud-Based Software Service Providers on HIPAA Covered Entities and Business Associates

Ward and Smith, P.A. on

The message from patients to healthcare providers is clear: increase the quality of health services while decreasing cost.  The message from the federal government to healthcare providers and their business associates is even...more

Roetzel & Andress

New HIPAA Guidance Sheds Light on Existing Rules

Roetzel & Andress on

Recently, regulators issued new guidance related to the Health Insurance Portability and Accountability Act (“HIPAA”), Pub.L. 104–191, 110 Stat. 1936, enacted August 21, 1996. Specifically, on October 6, 2016, the Department...more

Stinson LLP

HHS Publishes New Guidance on HIPAA and Cloud Computing

Stinson LLP on

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) has issued a new guidance regarding HIPAA compliance and the use of cloud computing solutions. The guidance is intended to assist covered entities...more

King & Spalding

HHS Issues Guidance Regarding Importance of Business Associate Agreements Between Covered Entities and Cloud Services Vendors

King & Spalding on

The Health and Human Services Office for Civil Rights (OCR) recently issued guidance regarding the importance of covered entities and cloud service vendors maintaining business associate agreements (BAAs) where electronic...more

Poyner Spruill LLP

Five Highlights from OCR Guidance On HIPAA Compliance In Cloud Computing

Poyner Spruill LLP on

The Department of Health and Human Services’ Office of Civil Rights (OCR) has issued guidelines for HIPAA-covered entities that utilize cloud computing in processing electronic protected health information (ePHI). The...more

BCLP

Clouds, With A Nearly 100% Chance of a Business Associate Agreement

BCLP on

HHS recently posted guidance on its website addressing HIPAA’s approach to cloud computing. Basically, any time a cloud service provider has electronic protected health information (ePHI), it’s a business associate. This is...more

King & Spalding

HHS-OCR Announces Guidance On HIPAA Compliance And Cloud Computing

King & Spalding on

On October 6, 2016, the Department of Health and Human Services Office for Civil Rights (“OCR”) issued guidance on complying with HIPAA privacy, security, and breach notification rules when using cloud computing technology...more

Mintz - Health Care Viewpoints

HHS Publishes Guidance on HIPAA and Cloud Computing

Mintz - Health Care Viewpoints on

On October 7, 2016, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) published guidance to assist cloud service providers (CSPs) and their customers with HIPAA compliance. As discussed below,...more

Saul Ewing LLP

OCR Issues Guidance on HIPAA and Cloud Computing

Saul Ewing LLP on

On October 7, 2016, the U.S. Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”), released a guidance document (the “Guidance”) on the HIPAA-compliant use of cloud computing technologies. The...more

McGuireWoods LLP

The Cloud Grounded: Cloud Hosts Are Business Associates Under HIPAA Security Rule

McGuireWoods LLP on

The Department of Health and Human Services Office for Civil Rights (OCR) issued long-anticipated guidance to help covered entities and their business associates — including cloud service providers (CSPs) — comply with the...more

Robinson+Cole Data Privacy + Security Insider

OCR Releases HIPAA Guidance on Cloud Computing

Robinson+Cole Data Privacy + Security Insider on

On October 6, 2016, the Department of Health and Human Services Office for Civil Rights (OCR) released HIPAA guidance on cloud computing (Guidance). The Guidance is intended to help covered entities and business associates...more

Jackson Lewis P.C.

HHS Issues Cloud Computing Guidance Which Is Helpful To All Users of Cloud Services

Jackson Lewis P.C. on

Last week, the Department of Health and Human Services’ Office for Civil Rights (OCR) provided guidance for HIPAA covered entities and business associates that use or want to use cloud computing services involving protected...more

Faegre Drinker Biddle & Reath LLP

Get Your Questions Ready

Faegre Drinker Biddle & Reath LLP on

A lot has changed since the HIPAA Privacy Rule was finalized in 2002 and the HIPAA Security Rule was finalized a year later in 2003. The iPhone had not been released (that happened in 2007), Apple had just released the...more

Latham & Watkins LLP

St. Elizabeth’s Medical Center Pays $218,400 to Settle Alleged HIPAA Security Case Stemming from Use of Cloud-Based Document...

Latham & Watkins LLP on

Alleged HIPAA Violations Resulted from Medical Center’s Failure to Risk Assess Internet-Based Document Sharing Application and Inadequate Breach Response. The US Department of Health and Human Services (HHS) Office for...more

Cooley LLP

Blog: HIPAA FAQ Series: Do You Need a BAA with Your Cloud Storage Provider?

Cooley LLP on

This week, the HIPAA FAQ series continues with another topic about business associate agreements (BAAs). As most Covered Entities and Business Associates know, in the event that a Covered Entity utilizes a service provider...more

BakerHostetler

HIPAA, Business Associates, and the Cloud

BakerHostetler on

Under the Final Rule, as previously discussed, business associates must comply with the technical, administrative, and physical safeguard requirements under the Security Rule....more

BakerHostetler

Business Associate Agreements: More Readily Accepted by Cloud Service Providers? Maybe

BakerHostetler on

Although the HIPAA Omnibus Final Rule's expansion of business associate liability could create difficulties for healthcare providers and other covered entities seeking to negotiate business associate agreements with vendors...more

BakerHostetler

Special Edition: Health Law Update - February 28, 2013

BakerHostetler on

In This Issue: - A Baker's Dozen of Significant Changes From the HIPAA/HITECH Rule 1. Business Associates and Subcontractors 2. Breach Notification 3. Covered Entity Organizational Structures 4. Cloud...more

Mintz - Privacy & Cybersecurity Viewpoints

The New HIPAA Omnibus Rule & Your Liability — A Detailed Review

Mintz - Privacy & Cybersecurity Viewpoints on

As we have reported in this blog, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) recently released final regulations containing modifications to the HIPAA Privacy, Security, Enforcement, and...more

24 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide