Healthcare data security: Focus on 'business associates'
With regulators seeking tighter control over the role of external contractors in assuring healthcare privacy and security, other third parties are offering to help audit those relationships with services from the cloud. Under the Department of Health and Human Services (HHS) HIPAA Final Omnibus Rule, contractors and subcontractors who work with healthcare providers, insurers, or other services that process patient health information (PHI) must meet HIPAA privacy rules. Referred to by regulators as "business associates," these external parties also include IT service providers.
- Providers' Push to Consolidate Roils Payers
- As Retail Clinics Surge, Quality Metrics MIA
- Former NQF Co-Chair Linked to Conflicts of Interest in Journal Probe
- RN Named Chief Patient Experience Officer
- Medicare Cost, Quality Data Tools Weak, Says GAO
- No Employee Satisfaction, No Patient-Centered Culture
- In PCMH, the 'P' is Not for 'Physician'
- Population Health Pays Off for NY Collaborative
- Six Not-So-Good Reasons for Avoiding Population Health
- How Simple Data Analytics is Driving Physician Incentives