A NATIONAL HIPAA SUMMIT AUDIOCONFERENCE Davis Wright Tremaine LLP Legal Requirements For Vendor And Clearinghouse HIPAA Compliance; Business Associate.

Slides:



Advertisements
Similar presentations
Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,
Advertisements

H OGAN & H ARTSON, L.L.P.
An Overview for In-Home Service Providers Legal advice must be tailored to specific circumstances. Information provided in this presentation should not.
HIPAA Basics Brian Fleetham Dickinson Wright PLLC.
HIPAA: Privacy, Security, and HITECH, Oh My! Presented by Stephanie L. Ganucheau, Special Assistant Attorney General.
HIPAA and Public Health 2007 Epi Rapid Response Team Conference.
Copyright Eastern PA EMS Council February 2003 Health Information Portability and Accountability Act It’s the law.
HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.
P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
H IPAA PRIVACY WORK GROUP FOR EYE BANKS EBAA HIPAA PRIVACY WORK GROUP Christina W. Strong, Esq., Facilitator.
COMPLYING WITH HIPAA PRIVACY RULES Presented by: Larry Grudzien, Attorney at Law.
Jill Moore April 2013 HIPAA Update: New Rules, New Challenges.
Hot Topics Legal Update Jill D. Moore, JD, MPH University of North Carolina School of Government September 2014.
Business Associate Contracts: Time Is Running Out... Rebecca L. Williams, RN, JD Partner Davis Wright Tremaine LLP Seattle, WA
HIPAA Compliance Strategies for Employers, METs, MEWAs and Taft Hartley Union Trust Funds The HIPAA Colloquium at Harvard University Presented by: Melissa.
Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.
1 Sixth National HIPAA Summit The Health Lawyer as Business Associate March 28, 2003 Session VI 3:00 pm Gerald E. DeLoss, Esquire Barnwell Whaley Patterson.
HIPAA Collaborative of Wisconsin Business Associates Extending the Reach of the Privacy Rule.
HIPAA Health Insurance Portability & Accountability Act of 1996.
Notice of Privacy Practices Nebraska SNIP Privacy Subgroup July 18, 2002 Michael J. Brown, MHA, CPA Vice-President, Administrative & Regulatory Affairs,
HIPAA Trading Partners, Legal Relationships October 2, 2001 presented by Peter B. Goldstein, Esq. Cap Gemini Ernst & Young, US LLC.
HIPAA PRIVACY AND SECURITY AWARENESS.
HIPAA Business Associates Leadership Group Meeting June 28, 2001.
– Privacy in Perspective – Dealing with Hybrids & Other Unique Collaborations Thomas E. Jeffry, Jr., Esq. Partner, Davis Wright Tremaine LLP, Los Angeles,
Health Insurance Portability and Accountability Act (HIPAA)
Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.
Office of the Secretary Office for Civil Rights (OCR) The HITECH NPRM: Overview of Research Comments October 19, 2010 Christina Heide, JD HHS Office for.
HIPAA and Employer Group Health Plans: Nothing is Simple Beth L. Rubin March 26, 2003  2003 Dechert LLP.
Advanced Issues in Privacy: Drafting and Negotiating Business Associate Contracts Thomas E. Jeffry, Jr. Partner Davis Wright Tremaine LLP Los Angeles,
Davis Wright Tremaine LLP Case Study: Small Group Health Plan HIPAA Privacy Compliance for Employers September 15, 2003 Speaker Jason Froggatt Becky Williams.
Health Insurance Portability and Accountability Act of 1996 HIPAA Privacy Training for County Employees.
Understanding HIPAA (Health Insurandce Portability and Accountability Act)
HIPAA For Provider Contracting Networks Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)
FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.
Policies for Information Sharing April 10, 2006 Mark Frisse, MD, MBA, MSc Marcy Wilder, JD Janlori Goldman, JD Joseph Heyman, MD.
OHCAs, ACEs and Hybrid Entities Paul Smith Davis Wright Tremaine LLP One Embarcadero Center Suite 600 San Francisco, CA (415)
A Professional Corporation Stinson, Mag & Fizzell (402) Business Associates 101 Jennifer Wolfe Jerram, B.S.N., J.D.
HIPAA Privacy Rules: What Are Plan Sponsors Required to Do?
Health Insurance portability and Accountability Act (HIPAA)‏
Davis Wright Tremaine LLP The Seventh National HIPAA Summit HIPAA Privacy: Privacy Rule Compliance on Public Health Activities and Research Thomas E. Jeffry,
HIPAA Privacy Rule Implementation Status Report Richard M. Campanelli, J.D. Director, Office for Civil Rights Before the The Tenth National HIPAA Summit.
Configuring Electronic Health Records Privacy and Security in the US Lecture b This material (Comp11_Unit7b) was developed by Oregon Health & Science University.
Connecting for Health Common Framework: the Model Contract for Health Information Exchange Gerry Hinkley com July 18, 2006 Davis Wright.
HIPAA Overview Why do we need a federal rule on privacy? Privacy is a fundamental right Privacy can be defined as the ability of the individual to determine.
HIPAA Privacy Rule Positive Changes Affecting Hospitals’ Implementation of the Rule.
©2002 by the National Committee for Quality Assurance NCQA and HIPAA “A match made in ?” The Fifth National HIPAA Summit Sharon King Donohue, JD General.
GW&T © 2002 Garfunkel, Wild & Travis, P.C HIPAA: What University Counsel Needs to Know -- The Basics NATIONAL ASSOCIATION OF COLLEGE AND UNIVERSITY.
Final HIPAA Privacy Rule: The Research Provisions Julie Kaneshiro DHHS Office for Human Research Protections Phone: Fax:
HIPAA Privacy Rule Positive Changes Affecting Hospitals’ Implementation of the Rule Melinda Hatton -- Oct. 31, 2002.
Enforcement, Business Associates and Breach Notification. Oh my!
HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT (HIPAA)
What is HIPAA? HIPAA stands for “Health Insurance Portability & Accountability Act” It was an Act of Congress passed into law in HEALTH INSURANCE.
The HIPAA Privacy Rule: Implications for Medical Research
HIPAA Administrative Simplification
HIPAA.
HOGAN & HARTSON, L.L.P. “Publications” “Health”
Paul T. Smith Davis Wright Tremaine LLP
Disability Services Agencies Briefing On HIPAA
Current Privacy Issues That May Affect Your Credit Union
The HIPAA Privacy Rule and Research
NATIONAL HEALTH INFORMATION TECHNOLOGY AUDIOCONFERENCE NOVEMBER 23, 2004 Legal Barriers to the Adoption of Health Information Technology Paul T. Smith,
Business Associate Contracts: Time Is Running Out . . .
Paul T. Smith, Esq. Partner, Davis Wright Tremaine LLP
National Congress on Health Care Compliance
Making Your IRBs and Clinical Investigators HIPAA-Ready
Advanced Issues in Business Associate Contracting
THE 13TH NATIONAL HIPAA SUMMIT HEALTH INFORMATION PRIVACY & SECURITY IN SHARED HEALTH RECORD SYSTEMS SEPTEMBER 26, 2006 Paul T. Smith, Esq. Partner,
HIPAA Business Associates:
Analysis of Final HIPAA Privacy Modification Rule
Presentation transcript:

A NATIONAL HIPAA SUMMIT AUDIOCONFERENCE Davis Wright Tremaine LLP Legal Requirements For Vendor And Clearinghouse HIPAA Compliance; Business Associate Agreements Wednesday, July 24, 2002 Thomas E. Jeffry, Jr.

Davis Wright Tremaine LLP To Be or Not to Be – That is the Question! Step One: Know thyself Covered Entity Business Associate Both a Covered Entity and a Business Associate Step One: Know thyself Covered Entity Business Associate Both a Covered Entity and a Business Associate

Davis Wright Tremaine LLP Covered Entities A health plan A health care clearinghouse A health care provider who transmits any health information in electronic form in connection with a covered transaction A health plan A health care clearinghouse A health care provider who transmits any health information in electronic form in connection with a covered transaction

Davis Wright Tremaine LLP Health Care Clearinghouse “... a public or private entity, including billing services, repricing companies, community health management information systems or community health information systems, and ‘value added networks and switches, that...” 1. Processes nonstardard format or data into standard transaction. 2. Receives standard transaction and processes into nonstardard format or data for the receiving entity “... a public or private entity, including billing services, repricing companies, community health management information systems or community health information systems, and ‘value added networks and switches, that...” 1. Processes nonstardard format or data into standard transaction. 2. Receives standard transaction and processes into nonstardard format or data for the receiving entity

Davis Wright Tremaine LLP What’s Not a Health Care Clearinghouse Telecommunications entities Telephone Companies Internet Service Providers Health plans and providers unless they perform a clearinghouse function for another entity that is not designated as an affiliated single covered entity Telecommunications entities Telephone Companies Internet Service Providers Health plans and providers unless they perform a clearinghouse function for another entity that is not designated as an affiliated single covered entity

Davis Wright Tremaine LLP Business Associates “with respect to a covered entity, a person to whom the covered entity discloses protected health information so that the person can carry out, assist with the performance of, or perform on behalf of, a function or activity.”

Davis Wright Tremaine LLP Examples of Business Associate Services Legal Actuarial Accounting Consulting Management/Administrative Accreditation Data aggregation Financial Services Legal Actuarial Accounting Consulting Management/Administrative Accreditation Data aggregation Financial Services

Davis Wright Tremaine LLP Who is Not a Business Associate A member of the covered entities own workforce A covered entity participating in an organized health care arrangement that performs a function for or on behalf of the organized health care arrangement A member of the covered entities own workforce A covered entity participating in an organized health care arrangement that performs a function for or on behalf of the organized health care arrangement

Davis Wright Tremaine LLP Multiple Personalities A covered entity may be a business associate of another covered entity.

Davis Wright Tremaine LLP Clearinghouses as Business Associates In most instances, clearinghouse will receive PHI as a business associate of another covered entity Are responsible for abiding by the terms of their business associate contract Are not subject to certain requirements in the Final Privacy Rule Are in violation of the Privacy rule when they violate their BA contract In most instances, clearinghouse will receive PHI as a business associate of another covered entity Are responsible for abiding by the terms of their business associate contract Are not subject to certain requirements in the Final Privacy Rule Are in violation of the Privacy rule when they violate their BA contract

Davis Wright Tremaine LLP Clearinghouse as Business Associate not subject to: Specified procedural requirements Obtaining consent, individual authorization or agreement Privacy notice Individual rights for access, amendment, and accounting for disclosures Administrative requirement Specified procedural requirements Obtaining consent, individual authorization or agreement Privacy notice Individual rights for access, amendment, and accounting for disclosures Administrative requirement

Davis Wright Tremaine LLP Business Associate Contracts Many forms circulating around including Appendix to the NPRM, 67 Fed.Reg. at page (3/27/2002) Transition Rule proposed that would allow for BA contracts for pre-existing relationships to be in place at earlier of renewal/modification of contract or April 14, Requirement of covered entity as part of their obligation to ensure protection of PHI from uses and disclosures not permitted under HIPAA Many forms circulating around including Appendix to the NPRM, 67 Fed.Reg. at page (3/27/2002) Transition Rule proposed that would allow for BA contracts for pre-existing relationships to be in place at earlier of renewal/modification of contract or April 14, Requirement of covered entity as part of their obligation to ensure protection of PHI from uses and disclosures not permitted under HIPAA

Davis Wright Tremaine LLP Covered Entity Perspective Manage risk and avoid liability Business Associate held to a higher level of accountability Indemnification and other assurances from Business Associate beyond what is required under the standard for business associate contracts Uniformity of BA contracts Manage risk and avoid liability Business Associate held to a higher level of accountability Indemnification and other assurances from Business Associate beyond what is required under the standard for business associate contracts Uniformity of BA contracts

Davis Wright Tremaine LLP Vendor Perspective Contract limited to terms required under 42 CFR (e) Least restrictions on its use and disclosure of PHI obtained from the covered entity Minimize liability; no indemnification Uniformity of BA contracts; consistency with subcontracts Contract limited to terms required under 42 CFR (e) Least restrictions on its use and disclosure of PHI obtained from the covered entity Minimize liability; no indemnification Uniformity of BA contracts; consistency with subcontracts

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.