Featured Jobs
|
Senior Retirement Plan Analyst - DC Plans M2B Retirement Consulting LLC
|
|
Retirement Plan Analyst - DC Plans M2B Retirement Consulting LLC
|
|
Director of Regulatory Operations and Compliance PCS Retirement
|
|
Benefit Plans Plus
|
|
BPAS
|
|
PCS Retirement
|
|
RetirementPlans.com, LLC
|
|
Relationship Manager – MEP/PEP Benefit Plans Plus
|
|
Reid & Riege PC
|
|
Nova 401(k) Associates
|
Free Newsletters
“BenefitsLink continues to be the most valuable resource we have at the firm.”
-- An attorney subscriber
|
|
|
Protecting Patient Data in the Cloud: Understanding New HIPAA Compliance Requirements
Moss Adams LLP 
[Guidance Overview] Oct. 9, 2014
"When you're determining which business associate to hire, it's important to understand the terms that consultants and associates use to describe their services. HIPAA-compliant refers to software and data storage systems that have controls based on three categories of safeguards: administrative, physical, and technical. Each category includes shared responsibilities for the cloud provider, along with safeguards that are the sole responsibilities of each. A 'HIPAA-compliant' service has been found in compliance with the HIPAA Security and Privacy Rules. HIPAA-certified is a term consultants sometimes use to claim their work is HIPAA-compliant, but the HHS and its Office for Civil Rights (OCR) do not certify any persons or products as 'HIPAA-certified.'"
|
| Please click here to report this link if it is broken (for example, if you see a "404 File Not Found" error message after you click on the linked news item's title). |
| An important word about authorship: BenefitsLink® created this link to the news item, but we are not the news item's author (unless expressly shown above). |