How may the HIPAA Privacy Rule’s minimum necessary standard apply to electronic health information exchange through a networked environment? Read More How may the HIPAA Privacy Rule’s minimum necessary standard apply to electronic health information exchange through a networked environment?
May a health information organization (HIO), acting as a business associate of a HIPAA covered entity, de-identify information and then use it for its own purposes? Read More May a health information organization (HIO), acting as a business associate of a HIPAA covered entity, de-identify information and then use it for its own purposes?
What may a HIPAA covered entity’s business associate agreement authorize a health information organization (HIO) to do with electronic protected health information (PHI) it maintains or has access to in the network? Read More What may a HIPAA covered entity’s business associate agreement authorize a health information organization (HIO) to do with electronic protected health information (PHI) it maintains or has access to in the network?
May a health information organization (HIO) manage a master patient index on behalf of multiple HIPAA covered entities? Read More May a health information organization (HIO) manage a master patient index on behalf of multiple HIPAA covered entities?
May a covered health care provider disclose electronic protected health information (PHI) through a health information organization (HIO) to another health care provider for treatment? Read More May a covered health care provider disclose electronic protected health information (PHI) through a health information organization (HIO) to another health care provider for treatment?
Who is liable under the HIPAA Privacy Rule where multiple covered entities have signed on to a single business associate agreement and one member breaches the agreement? Read More Who is liable under the HIPAA Privacy Rule where multiple covered entities have signed on to a single business associate agreement and one member breaches the agreement?
How should a covered entity respond to any HIPAA Privacy Rule violation of a health information organization (HIO) acting as its business associate? Read More How should a covered entity respond to any HIPAA Privacy Rule violation of a health information organization (HIO) acting as its business associate?
Does the HIPAA Privacy Rule require a covered entity to “police” a health information organization (HIO), which functions as its business associate? Read More Does the HIPAA Privacy Rule require a covered entity to “police” a health information organization (HIO), which functions as its business associate?
What is a covered entity’s liability under the HIPAA Privacy Rule for sharing data inappropriately to or through a health information organization (HIO) or other electronic health information exchange network? Read More What is a covered entity’s liability under the HIPAA Privacy Rule for sharing data inappropriately to or through a health information organization (HIO) or other electronic health information exchange network?
Is a health plan required to periodically notify enrollees about the availability, and how to obtain a copy, of its Notice of Privacy Practices? Read More Is a health plan required to periodically notify enrollees about the availability, and how to obtain a copy, of its Notice of Privacy Practices?
