HIPAA Compliance and Non-Business Associate Vendors: Strategies and Best Practices
Compliancy Group will present a complimentary webinar on HIPAA compliance and how to deal with “Non- Business Associates.”
The 90-minute webinar will be Tuesday, July 14, beginning at 2 p.m. Eastern time.
HIPAA covered entities (including health care providers and health plans) and their business associates must be mindful of HIPAA compliance when working with other entities even when that other entity is not a business associate. Often, vendors have access to an organization’s premises or information systems which may result in incidental access to protected health information (PHI).
For example, a cleaning service may have access to a medical records room or an IT support vendor may have remote access to employee workstations. While such incidental access to PHI does not make the vendor a business associate, an organization must ensure that its PHI is protected and that it complies with HIPAA.
This webinar will address:
- Strategies for dealing with non-business associate vendors
- Best practices to protect your organization
- Development of policies and model contract language
