Policies and Procedures
Hospitals, health care practitioners, office practices and business associates must have written HIPAA policies and procedures. We develop and consult on HIPAA compliance plans that include HIPAA privacy and security, policies and procedures and breach reporting requirements in compliance with the HIPAA Rules.
HIPAA requires that all members of a covered entity’s workforce and business associates have training on the HIPAA privacy and security policies that affect their job. Our program addresses the needs of covered entities.
We will develop training programs tailored for your organization for on-site or web-based training for an additional fee.
Business Associate Agreements
HIPAA requires that you have a Business Associate Agreement with business partners that you contract with to provide services if they access, use or disclose protected health information (PHI). For example, accounting, billing, legal, risk management and IT services. We will help you identify business associates and provide business associate agreements.
Privacy Complaint Response
We will investigate any privacy or security complaint made to an individual, group, practice, or business associate. We are experienced in responding to Office for Civil Rights investigative letters and work with them to resolve complaints.
Breach Analysis and Notification
HIPAA Associates works with clients dealing with a breach of unsecured PHI. We manage notification to the individual, mitigation of damages, retraining and reporting to the Office for Civil Rights.
We consult and advise on individual issues related to HIPAA privacy, security and breach notification.