Healthcare data security: Focus on 'business associates'
With regulators seeking tighter control over the role of external contractors in assuring healthcare privacy and security, other third parties are offering to help audit those relationships with services from the cloud. Under the Department of Health and Human Services (HHS) HIPAA Final Omnibus Rule, contractors and subcontractors who work with healthcare providers, insurers, or other services that process patient health information (PHI) must meet HIPAA privacy rules. Referred to by regulators as "business associates," these external parties also include IT service providers.
- CMS Mulls Income-Adjusting MA Stars
- Providers Prep for New Payment Models as Population Health Grows
- Providers' Push to Consolidate Roils Payers
- 3 Ways to Rev Employee Development Programs
- Transforming Decision Support and Reporting
- As Retail Clinics Surge, Quality Metrics MIA
- Aligning Executive Compensation with Provider Mission
- Nurse Ethics Comes to a Head at Guantanamo Bay
- In Lakeport, CA, a Population Health Laboratory is Born
- 6 Not-So-Good Reasons for Avoiding Population Health