Jump to content

Hippa Rules when plan admin & employer are the same

Guest parrot87

By Guest parrot87
in Health Plans (Including ACA, COBRA, HIPAA)

 Share

Recommended Posts

Guest parrot87

Guest parrot87

Posted
Posted

So if an employer is the plan administrator, how do they avoid Hippa compliance issues?

J Simmons

J Simmons

Posted
Posted

An entire treatise could likely be written on that.

Primarily the difference is that there would be no Business Associate agreement needed between the ER and a TPA, or monitoring of a TPA. The ER would yet need all the same 'internal' controls and limitations needed for whenever it possesses PHI, whether while using a TPA or the ER itself administering the plan. Due to the in-house administration, the employees with needed access to PHI to perform their job duties would likely be a larger number than if a TPA is used. However, the physical and IT issues and precautions ought to be just as rigorous for an ER that possesses any PHI while using a TPA as it is when not using a TPA.

If the ER is entirely administering the plan and has under 50 employees, the ER might qualify for an exception from HIPAA Privacy Rule, but yet need to comply with the HIPAA Security Standards.

John Simmons

johnsimmonslaw@gmail.com

Note to Readers: For you, I'm a stranger posting on a bulletin board. Posts here should not be given the same weight as personalized advice from a professional who knows or can learn all the facts of your situation.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

Terms of Use

  I accept