HIPAA Privacy Regulation

Business Associate Agreement

  • A Business Associate is a separate organization, providing services to a covered entity, which require the exchange of PHI.
  • An agreement must be in place between covered entities and their business associates.
  • This agreement defines the processes that will be implemented to ensure the privacy and security of PHI.
  • Examples of Business Associates may include collection agencies, attorneys, consultants, and accountants, requiring access to PHI.
  • Business Associate agreements are not generally required between two covered entities involved in treatment, payment, or health care operations.

Learn more about laboratory continuing education for individuals and lab safety and compliance courses for the whole lab.

HIPAA Privacy and Security Regulations course details »

Learn more about laboratory continuing education for ASCP, AMT, NCA, and state renewal and recertification requirements »

Get information on OSHA laboratory safety courses for clinical and medical laboratories »