Blog May 3, 2013

Who Should Sign a HIPAA BAA?

There has been a lot of talk about HIPAA BAAs lately as the new omnibus regulations take effect September 2013. Here is a [simplified] diagram of how medical & healthcare providers need to work with any parties that process or store their protected health information (PHI).

In this scenario you have a medical provider using a billing company who hosts their data with a managed hosting company. There are also instances when the medical provider works directly with the hosting company in which case they have to sign a BAA directly.

Feel free to share this with anyone that is going through this process right now.

Related Resources

 
Cloud Governance vs. Cloud Management
In a recent survey, cloud governance was ranked as the second most pressing cloud challenge by 84% of enterprises and 73% of small and midsized…
 
The Starter’s Guide to Migrating Workloads to the Cloud
Most organizations are migrating to the cloud as part of their digital transformation efforts. But cloud services have developed and changed radically over the past…
 
Top Cloud Computing Security Issues and Challenges, and How IBM i Meets Them
There’s no doubt that cybersecurity has become the #1 challenge faced by IT departments today. And, with more and more companies moving workloads to the…