A prominent misunderstanding among vendors serving the healthcare industry is that they are not subject to HIPAA compliance. However, vendors are, in fact, required to maintain a compliancy to HIPAA along with healthcare providers themselves. Under the 2009 American Recovery and Reinvestment Act (ARRA), business associates (IT vendors, etc.) are subject to nearly all the same liabilities, penalties and punishments associated with any breaches in patient data.
But that was three years ago…so why are we talking about it now? Recently, the Minnesota attorney general brought charges against a business associate for not maintaining HIPAA compliance. The Minnesota company at fault, business associate Accretive Health, Inc, lost an unencrypted laptop, compromising 23,500 patient records.
Ever wonder if your office is really
HIPAA compliant? HIPAA compliance is a big deal, especially when you begin to implement an EMR. Remaining compliant in a shared medical office can be a daunting thought. Instead of a complete overhaul, let’s look at 3 small changes you can implement today.
Click below to watch the 1 minute video of Jay Norris with Claris Networks.