What are a covered entitys obligations under the HIPAA Privacy Rule with respect to PHI held by a business associate during the contract transition period?
During the contract transition period, covered entities must observe the following responsibilities with respect to PHI held by their business associates: Make information available to the Secretary, including information held by a business associate, as necessary for the Secretary to determine compliance by the covered entity. Fulfill an individual’s right to access and amend his or her PHI contained in a designated record set, including information held by a business associate, if appropriate, and receive an accounting of disclosures by a business associate. Mitigate, to the extent practicable, any harmful effect that is known to the covered entity of an impermissible use or disclosure of PHI by its business associate. Covered entities are required to ensure, in whatever reasonable manner deemed effective by the covered entity, the appropriate cooperation by their business associates in meeting these requirements during the transition period. However, a covered entity is not required
Related Questions
- What are a covered entity’s obligations under the HIPAA Privacy Rule with respect to protected health information held by a business associate during the contract transition period?
- What are a covered entitys obligations under the HIPAA Privacy Rule with respect to protected health information held by a business associate during the contract transition period?
- What are a covered entitys obligations under the HIPAA Privacy Rule with respect to PHI held by a business associate during the contract transition period?
