3-Did You Keep Your Information Security Management and Risk Management Documents?

top of page

HIPAA | Artificial Intelligence (AI) in Healthcare | Health Data Analytics | Health Information Management

for HIPAA Covered Entities, Business Associates & Subcontractors, Healthcare Professionals, and e-Learning Providers.

Now, why would you care about HIPAA? I know, right?

HIPAA Covered Entities may be subject to civil money penalties and criminal penalties for HIPAA violations.

HIPAA stands for Health Insurance Portability and Accountability Act of 1996.

HIPAA Covered Entities (CEs) are healthcare providers who conduct certain financial and administrative transactions electronically with PHI (Ex: Healthcare providers who submit claims electronically), Health Plans, and Health Care Clearinghouses.

PHI stands for Protected Health Information. It is any data in any form or medium, containing at least one HIPAA identifier, created, received, transmitted, or stored by covered entities, business associates and their subcontractors. The relationship with health information is essential.

Business Associates (BAs) use or disclose Protected Health Information (PHI) while they provide services to, or on behalf of a HIPAA Covered Entity (CE) and are not members of the HIPAA Covered Entity's workforce.

Business Associate Agreements (BAAs) or Contracts outline how the HIPAA Covered Entity (CE) and the Business Associate (BA) will handle the confidentiality, privacy, security, and integrity of Protected Health Information (PHI) involved.

Thus, a Business Associate Agreement (BAA) or Contract is required between a HIPAA Covered Entity (CE) and a Business Associate (BA); and between a Business Associate and its Subcontractors.

To Digitally View and Sign your Business Associate Agreement (BAA) with MLJ CONSULTANCY LLC, please:

Click Here

MLJ CONSULTANCY LLC
Consulting Services on The Go

00:00 / 02:24

Prevent HIPAA Violations & Breaches >

MLJ CONSULTANCY LLC
- Jan 13, 2021
- 1 min read

3-Did You Keep Your Information Security Management and Risk Management Documents?

Updated: Mar 23, 2021

HIPAA Covered Entities and their Business Associates must retain their information security management and risk management documents for at least six (6) years from their creation date, or when they were last in effect, whichever time period is greater. They must be maintained and backed up. NEXT>

Want to read more?

Subscribe to mljconsultancy.net to keep reading this exclusive post.

Subscribe Now

MLJ CONSULTANCY LLC Consulting Services on The Go

3-Did You Keep Your Information Security Management and Risk Management Documents?

Want to read more?

Related Posts

MLJ CONSULTANCY LLC
Consulting Services on The Go