Business Associate Agreements (BAAs) are an important part of HIPAA compliance for your practice. These contracts should clearly outline a Business Associate’s responsibilities regarding your PHI and can pose a serious liability risk if the BAA isn’t negotiated effectively. Any outside entity or individual that is charged with receiving, maintaining, creating, or transmitting PHI is considered a Business Associate and needs to have a BAA of their own in place with your practice.
This checklist will help you to craft a BAA that covers all of the necessary bases, follows the language guidelines set by HIPAA standards, and meets the minimum requirements for compliance. Your BAA should require a Business Associate to:
The nuances of a BAA can differ from Business Associate to Business Associate, and depend largely on the needs of your practice. Compliance guidelines are steadfast, but how you go about meeting those requirements is for the most part up to your discretion.
Contact GDS for any questions you have regarding HIPAA compliance and security. You can reach us at Info@GDSConnect.com or (888) 849-6818. We’re the compliance experts trusted by professionals across the nation.
Copyright ©2017 Global Data Systems, Inc. All rights reserved.