Deadline for Amending HIPAA Business Associate Agreements is September 22, 2014

Posted on June 30, 2014 by Bose McKinney & Evans LLP

Last year, the U.S. Department of Health and Human Services (“HHS”) published the long awaited Omnibus Final Rule which made a number of modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules (“HIPAA Final Rule”). Business Associate Agreements would need to be revised to incorporate required modifications. While the general compliance deadline for the HIPAA Final Rule was September 23, 2013, HHS offered a transition period to allow a little more time for existing Business Associate Agreements to be updated. If not already amended, covered entities (health plans, health care providers, and health care clearinghouses) and business associates have until September 22, 2014, to update their Agreements.

Some of the required amendments include providing that the business associate will comply with the requirements of the HIPAA Security Rule; including breach notification provisions; ensuring business associate subcontractors agree to the same restrictions and conditions that the business associate has agreed to with respect to the handling of protected health information; and extending certain HIPAA Privacy Rule requirements to the business associate. HHS has published sample Business Associate Agreement language on its website which can be viewed here.

About Bose McKinney & Evans LLP

Bose McKinney & Evans LLP is a business law firm, headquartered in Indianapolis, Indiana, serving both publicly held and privately held businesses, governmental entities and high-growth industries. Our clients include Fortune 100 companies, international manufacturers, national and regional financial institutions, agribusinesses, sports teams, university-incubated start-ups, media, utilities, cities and schools, to name a few. We strive to build strong relationships with our clients as key business advisors, to exceed expectations in the quality of our work, to be knowledgeable about our clients’ businesses and sectors, to be responsive to service needs and to continually seek to improve the delivery of client services. Our ultimate focus is on our clients.
This entry was posted in HIPAA and tagged , , , , , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s