The AIS Guide to Blue Cross and Blue Shield Plans: 2010

Major New HIPAA Rules Issued: Learn What Steps You Need to Take Soon - August 18 Webinar

AISHealth.com - Specialized Business Information for Health Care Managers Health Reform Pharmacy Benefit Consumer-Directed Care Compliance Market Data Health Plans
 HOME
 New on the Site
Customer Service
Sample Newsletters MarketPlace
AIS Products & Services

E-Savings Club weekly specials

Free E-Mail Newsletters
Health Business Daily
Government News
Sign Up for Free E-Mail Newsletters

Health Business Job Openings

Health Business Meetings

People on the Move
 
Health Plans
General Business Issues
Product News
Company Intelligence
Disease Management
Blue Cross and Blue Shield
Medicare Advantage
Managed Medicaid
Health Plan Products
 
Compliance
Compliance Strategies
HIPAA Resource Center
Government Resources
Compliance Products
 
Pharmacy Benefit
Pharmacy Benefit Mgmt.
Specialty Pharmacy
Drug Mgmt. Products
 
Consumer-Directed Care
Articles on CDH
CDH Data
 
Market Data
Health Plan Enrollment
Pharmacy Benefit Mgmt.
Data Products
 
Health Reform
Obama Administration
Federal Legislation
State Legislation
State Results
Association Positions
Research Organizations
 
MarketPlace
Newsletters
Web Services & Looseleaf Guides
Books & Reports, Directories & Databases
Meetings
Alphabetical Listing
 

Health Care Links
 

 
Visit AISEducation.com for more news and strategic information for today's business leaders
 
Recording and written materials of
AIS's audioconference on December 8, 2009
How to Amend HIPAA Business Associate Agreements to Comply With the HITECH Act: Strategies for Meeting the February Deadline

The new HITECH Act requires hospitals, providers, health plans and other HIPAA covered entities (CEs) to meet a February 2010 deadline for revising their business associate (BA) agreements. New language in BA amendments should require BAs to comply with (a) the HIPAA Security Rule,(b) new security breach notification rules and related strategies that CEs choose to implement, and (c) new privacy obligations imposed on CEs by the HITECH Act.  Developing and maintaining effective BA relationships should be a top compliance priority for CEs, since privacy and security breaches often take place at the BA level and can be just as damaging to a covered entity’s reputation. With February approaching and lots of tricky questions to resolve, covered entities need a quick crash course in what their options are for designing and implementing these amendments in the next three months.
Sponsored by Atlantic Information Services, Inc., publisher of Report on Patient Privacy and Report on Medicare Compliance

Speaker
Designed For
Shipping Information
Written Materials

View Cart
 View Shopping Cart

Print an order form:
If you do not wish to place your order online, click here to download a printable order form (PDF file), then submit your order via fax or mail, as directed on the form.

 

  
Order Now (Secure Site)
All formats come with written materials
Order Now

CD ($329)
Pub code: C9X30T
Order Now

MP3 file ($329)
Pub code: C9X30F

While the HITECH Act did not come right out and say “business associate agreements must be revised,” it does stipulate that certain provisions “shall be incorporated into the business associate agreement between the business associate and the covered entity.” Among them: business associate agreements must be amended to reflect the new mandate that BAs must comply with the Security Rule, should be amended to provide the covered entity with adequate notice in the event of a security breach, and should incorporate new privacy obligations imposed on CEs by the HITECH Act.

But with February approaching and no OCR guidance issued yet, there are many unanswered questions that covered entities must address. Among them:

  • Which security rule provisions do BAs need to comply with?
  • How much time should CEs give BAs to notify them of a security breach, since the CE itself must go public with certain breaches in 60 days?
  • How do these issues change for a CE  if  a BA is an “agent” instead of a “contractor”? 
  • What definition of “breach” should CEs give to their BAs? Should it include the “harm” standard or should CEs reserve this determination for themselves?

Veteran HIPAA attorney Reece Hirsch, a partner with Morgan, Lewis & Bockius LLP in San Francisco, answers these and many other questions … and outlines specific steps your organization should consider for amending your business associate agreements by February. In a 60-minute presentation, followed by 30 minutes devoted to your individual questions, these and other topics will be discussed in detail:

  • What are the new HITECH Act requirements that are driving amendments to business associate agreements?
  • What timing issues should covered entities be aware of, in terms of the February compliance deadline and the current absence of OCR guidance on HITECH Act implementation of business associate agreement amendments?
  • What should be a covered entity’s objectives related to their business associates’ compliance with breach notification and the security rule?
  • What specific contract language should CEs consider for meeting these two sets of objectives?
  • What strategies should CEs consider to effectively manage the onerous and difficult task of amending scores (if not hundreds) of BA agreements in the next three months?
  • To what extent have the HIPAA liabilities of covered entities been lessened with these new obligations for business associates?

 

Speaker

REECE HIRSCH, a partner in the San Francisco office of the law firm of Morgan, Lewis & Bockius LLP, is one of the nation's leading health care privacy and security attorneys. Mr. Hirsch counsels hospitals, health plans, insurance companies, pharmaceutical companies, physician organizations and health care technology companies with respect to a wide range of privacy and security compliance issues. He has written and lectured extensively on HIPAA privacy and security, security breach notification issues, and state and federal privacy and security laws. Mr. Hirsch is a contributing author to AIS's HIPAA Compliance Center at www.AISHIPAA.com.

Moderator: Liana Heitin, Editor, Report on Patient Privacy and Assistant Editor, Report on Medicare Compliance

 

Designed Especially For

Compliance officers, privacy officers, data security and IT managers, internal auditors, legal counsel and business managers with:

  • Hospitals and health systems
  • Medical group practices and providers
  • Health plans and insurance companies
  • Health care clearinghouses
  • Billing companies
  • Ancillary provider groups
  • Pharmaceutical companies
  • E-health companies

... and other HIPAA covered entities and business associates, which now have new obligations under the recently enacted law.

 

 

Shipping Information

Please note that CDs and MP3 files will be available within three weeks of the conference date.

Audio CDs (and accompanying written materials) are shipped via UPS. Please give us your street address when you order (UPS does not deliver to PO boxes). You should receive your order within 5-7 business days.* Shipping cost is $5.

MP3 files will be delivered as a download link within a PDF file of the accompanying written materials. Shipping will NOT be charged for this item.

If you order the MP3 file before the conference date (by itself or in combination with the live audioconference), you will be sent an e-mail with the PDF file attached once the file is available.*

After the MP3 file is available*, if you order the MP3 file on this Web site through our secure shopping cart, a link will appear directing you to download the PDF file. This link will be accessible only for 24 hours, so be sure to save the file to your computer. If you order through our customer service department (by phone, mail, fax or e-mail), you will be sent an e-mail with the PDF file attached.

Rush Orders: Please call us at 800-521-4323 to place a rush order.* We will overnight your order for an additional charge of $30, or you can give us your FedEx or UPS account number and we will charge the shipping to your account. Rush orders placed after 3:00pm EST will not be shipped out until the next business day.

*CDs and MP3 files will be available within three weeks of the conference date.

 

Written Materials

Listeners will also receive practical written information to supplement information covered by the audioconference speakers.

 

For further information call 800-521-4323 or e-mail customerserv@aispub.com

Advertise With AIS

Privacy

Site Map



Copyright © 2010 by Atlantic Information Services, Inc. All rights reserved.
1100 17th Street, NW, Suite 300, Washington, DC 20036
Phone 202-775-9008 or 800-521-4323; E-mail customerserv@aispub.com