As the transition period for amending business associate agreements draws to a close, HIPAA experts have highlighted some issues for plan sponsors to keep in mind.
Under last year’s HIPAA/HITECH omnibus rules, all contracts with business associates must be compliant with the rules by Sept. 22. Obviously, group health plans and other HIPAA-covered entities that have not finished this process need to act quickly. Along with incorporating the terms required by the amended HIPAA rules, plan sponsors should consider provisions regarding breach notification, indemnification and privacy audits.
The full article is available on Thompson’s HR Compliance Expert.