Healthcare data security: Focus on 'business associates'
With regulators seeking tighter control over the role of external contractors in assuring healthcare privacy and security, other third parties are offering to help audit those relationships with services from the cloud. Under the Department of Health and Human Services (HHS) HIPAA Final Omnibus Rule, contractors and subcontractors who work with healthcare providers, insurers, or other services that process patient health information (PHI) must meet HIPAA privacy rules. Referred to by regulators as "business associates," these external parties also include IT service providers.
- EHR Systems 'Immature, Costly,' AMA Says
- Anthem Blue Cross, 7 CA Health Systems Create New Challenger, Business Model
- Interstate Medical Licensure Effort Advances
- Better HCAHPS Scores Protect Revenue
- Data Points to Boom in Private HIX
- How to Build a Health Plan from Scratch
- Few Winners Among MSSP Participants
- Technology Lights Up Health Innovation Forum
- CEO Exchange: Preparing for Population Health
- Insurers see cost hikes in Partners HealthCare (MA) mergers