Under the new HIPAA Omnibus Rule, business associate agreements (BAA) are required more often. But do you know how often? This is crucial to know because the Omnibus Rule compliance deadline is Sept. 23, 2013. BAAs are still required between healthcare organizations and business associates, as they were in the past, but now, they are also required between business associates and their subcontractors.
Here are some guidelines to follow when trying to decide whether you need a BAA. But, be sure to check with your legal counsel for specific requirements.*
For more information about business associate agreements and the new HIPAA Omnibus Rule, read the latest edition of our Data Breach Perspectives Newsletter here.
*The information you obtain herein is not, nor intended to be, legal advice. We try to provide quality information but make no claims, promises or guarantees about the accuracy, completeness or adequacy of the information contained. As legal advice must be tailored to the specific circumstances of each case and laws are constantly changing, nothing provided herein should be used as a substitute for the advice of competent legal counsel.