Updated: Mar 14
HIPAA: Health Insurance Portability and Accountability Act
Covered Entity (CE): Conducts electronic transactions with PHI ( Ex: Submits claims electronically)
PHI: Protected Health Information is any data containing at least one HIPAA identifier.
Business Associate (BA): Conducts businesses with or on behalf of a Covered Entity.
Business Associate Agreement (BAA): or Contract that outlines most importantly how confidentiality, privacy, and security of Protected Health Information (PHI) will be maintained by the BA.
A BAA or Contract, thus, is required, between a CE and a BA.
Data in motion-Examples: Data that is being transferred via emails.
Data at rest-Examples: Stored data