HIPAA audits highlight need for BAAs
OCR Phase 2 HIPAA audit programs highlight cloud services and MSP business associates
The Office for Civil Rights (OCR), part of the U.S. Department of Health and Human Services responsible for HIPAA enforcement announced that their Phase 2 program will increase the number of audits of healthcare providers. They also indicated that these audits will include increased focus on whether healthcare organizations are doing the required risk assessments and have Business Associate Agreements in place with third party providers (MSPs).
Two ways HIPAA audits can impact MSPs
For MSPs, this means assessing your business practices on two fronts. First, if you’re offering cloud services to your healthcare clients, you need to consider the HIPAA implications. Many applications, from email, file-sharing, and even voice services, can contain the patient information that is relevant to HIPAA. So, your ability to sign a Business Associate Agreement (BAA) with your healthcare clients is more important than ever. OCR has already issued fines this year for missing BAAs and risk assessments as part of several published enforcement actions.
And that brings us to the second front: risk assessments. Your healthcare clients need to be able to prove that a thorough risk assessment has been performed, and it’s highly likely that they’ll be looking to you to help them accomplish that task. This is a great professional service to be able to offer your clients. Policies, training, and documented plans are as important to HIPAA compliance as deploying secure IT applications.
Be a trusted advisor to your clients. Help them understand what they need to do to comply with HIPAA regulations and protect patient information. And choose cloud vendors who can support you in this endeavor.
Intermedia takes HIPAA compliance seriously
Looking for a service provider who truly understands HIPAA? Intermedia services provide the levels of security and privacy required to help businesses ensure compliance. And we’ll sign a BAA. Learn more about our solutions for healthcare organizations.
Plus, Intermedia enables partners to sell cloud services without changing how you do business. Our three partnership models make it easy to grow your business and support your clients in a manner that makes the most sense for you:
- Private Label — You own the billing, branding, bundling and every other element of the client relationship. We bill you at wholesale rates, and you set your own external pricing.
- Advisor — You leverage our brand, billing, and support, and earn one-time and recurring commissions.
- Referral — You pass us the lead, we close the deal and pay you a one-time commission.
Learn more about our award-winning partner program by visiting our website. Or call us at 888.299.2522 to speak with one of our experts.