HIPAA: HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT
BACTES has always placed the highest priority on the privacy and security of patient records. We maintain strict HIPAA compliance, and we continually adjust our policies and processes to meet the changing demands of HIPAA standards. Here are some helpful links for accessing HIPAA information and updates:
• U.S. Department of Health and Human Services
• American Health Information Management Association (AHIMA)
• HIPAA.com
HOW DOES BACTES ACHIEVE HIPAA COMPLIANCE?
BACTES understands the importance of confidentiality and security in our role as an integral part of a health care provider's operation, as well as the implications of federal and state privacy regulations. We strictly maintain the privacy of the protected health information that is shared with us. BACTES adheres to all current standards for medical records business associates. In addition, we provide our team with initial and ongoing privacy training similar to that which healthcare providers are required to provide to their workforce. BACTES conducts an extensive orientation program for all new staff members. The content of the orientation program includes significant education concerning privacy policies. Each person who joins the BACTES team is required to perform their duties with a high degree of integrity and must sign a confidentiality agreement that holds them accountable for safeguarding your facility's private information by preventing the misuse, intentional or unintentional disclosure of this information.
WHAT IS A BUSINESS ASSOCIATE AS DEFINED BY HIPAA?
The privacy standards of HIPAA create a national framework for health privacy protection to enhance the protection of patient medical and health information. The privacy standards change the manner in which almost all health care providers and others handle the use and disclosure of health information. However, the Privacy Rule applies only to health plans, health care clearinghouses and certain health care providers, otherwise known as "covered entities" under HIPAA. In today's complicated health care delivery system, most health care providers rely on contractors and other "business associates" to assist them in providing quality care to their patients. BACTES is one of these business associates. A business associate is a person or entity who provides certain functions, activities or services for or to a covered entity, involving the use and/or disclosure of protected health information. The business associate provisions of HIPAA were adopted out of concern that covered entities routinely disclose protected health information to a wide range of third parties. Because the privacy law only applies to covered entities, the business associate rule places restriction on third parties who perform certain functions on behalf of a covered entity and receive protected health information. Without restrictions on these disclosures, the protections intended by HIPAA would not cover a significant amount of protected health information that is disclosed to business associates. BACTES meets or exceeds all requirements for a Business Associate under the HIPAA Privacy Rule.
See a sample of the BACTES Business Associate Agreement here.