4-What must you include in your SRA documentation?

top of page

HIPAA | Artificial Intelligence (AI) in Healthcare | Health Data Analytics | Health Information Management

for HIPAA Covered Entities, Business Associates & Subcontractors, Healthcare Professionals, and e-Learning Providers.

Now, why would you care about HIPAA? I know, right?

HIPAA Covered Entities may be subject to civil money penalties and criminal penalties for HIPAA violations.

HIPAA stands for Health Insurance Portability and Accountability Act of 1996.

HIPAA Covered Entities (CEs) are healthcare providers who conduct certain financial and administrative transactions electronically with PHI (Ex: Healthcare providers who submit claims electronically), Health Plans, and Health Care Clearinghouses.

PHI stands for Protected Health Information. It is any data in any form or medium, containing at least one HIPAA identifier, created, received, transmitted, or stored by covered entities, business associates and their subcontractors. The relationship with health information is essential.

Business Associates (BAs) use or disclose Protected Health Information (PHI) while they provide services to, or on behalf of a HIPAA Covered Entity (CE) and are not members of the HIPAA Covered Entity's workforce.

Business Associate Agreements (BAAs) or Contracts outline how the HIPAA Covered Entity (CE) and the Business Associate (BA) will handle the confidentiality, privacy, security, and integrity of Protected Health Information (PHI) involved.

Thus, a Business Associate Agreement (BAA) or Contract is required between a HIPAA Covered Entity (CE) and a Business Associate (BA); and between a Business Associate and its Subcontractors.

To Digitally View and Sign your Business Associate Agreement (BAA) with MLJ CONSULTANCY LLC, please:

Click Here

MLJ CONSULTANCY LLC
Consulting Services on The Go

00:00 / 02:24

Prevent HIPAA Violations & Breaches >

MLJ CONSULTANCY LLC
- Jan 7, 2021
- 1 min read

4-What must you include in your SRA documentation?

Updated: Mar 23, 2021

HIPAA Covered Entities and Business Associates must include in their SRA documentation possible threats and vulnerabilities which they will assign impact and likelihood ratings to. This allows them to determine severity. They must develop corrective action plans as needed to mitigate identified security deficiencies according to which threats and vulnerabilities are most severe. NEXT >

MLJ CONSULTANCY LLC
Consulting Services on The Go

4-What must you include in your SRA documentation?

Want to read more?

Related Posts

MLJ CONSULTANCY LLC Consulting Services on The Go

4-What must you include in your SRA documentation?

Want to read more?

Related Posts

MLJ CONSULTANCY LLC
Consulting Services on The Go