HIPAA Business Associate

HIPAA Business Associates, in general terms, are companies or other organizations who contract with HIPAA “Covered Entities” (Health payers, health providers and clearinghouses) and create, use, transmit or maintain confidential patient information (Protected Health Information or PHI). Beginning in 2013, HIPAA Business Associates are themselves regulated by the HIPAA regulations and are subject to both civil and criminal penalties for violations of the rules.

Eagle works with clients in healthcare and healthcare business associates to ensure HIPAA Security compliance. We provide a set of HIPAA Policy Templates for a variety of business associate types including Cloud Vendors, Third Party Administrators, and Information Technology companies.

Secure Remote Access: Third-Party Risks

by Gary Pritts | Oct 31, 2019 | Business Associates & Others, General News, HIPAA

Some of the most infamous hacking incidents have arisen from third-party access to a corporate network that does not have secure remote access. Perhaps most infamously, the 2013 Target hack which compromised 110 million credit/debit cards used remote access granted... Read More

Telework Security: Securing Home and Remote Workers

by Gary Pritts | Oct 31, 2019 | Business Associates & Others, General News, Threat Intelligence

Telework Security: Securing Home and Remote Workers It goes by many names: Telework. Telecommute. Work from home. Remote work. According to recently released data from the US Census, 5.2% of Americans – 8 million people – worked from home in 2017. Home workers... Read More

SaaS Providers can reduce HITRUST certification costs with HITRUST Inheritance Program

by Gary Pritts | Oct 30, 2019 | Business Associates & Others, General News

SaaS providers can reduce HITRUST certification costs with HITRUST Inheritance Program Vendors who use the Software as a service (SaaS) distribution model have enjoyed considerable success in the healthcare marketplace. A challenge that they face is increased... Read More

Infected by your Computer Company

by Gary Pritts | Sep 5, 2019 | General News, Health Information Technology, HIPAA, Large Providers, Physician Practices

Last week, two Wisconsin companies that provide an online service to dental offices, Digital Dental Record and PerCSoft, told 400 dental office customers of a ransomware attack. The files on the computer networks of the dental offices were scrambled in a ransomware... Read More

Sell More to Hospitals with a HITRUST Certification

by Gary Pritts | Aug 20, 2019 | Business Associates & Others, General News, Health Information Technology, Threat Intelligence

The Provider Third Party Risk Management Council, made of a consortium of leading hospitals, introduced a new approach to third-party risk management. How can you better serve them? The solution is simple – any vendor of a certain size who wishes to do business with one the member hospitals must successfully complete – and annually maintain — a certification using the HITRUST CSF. Member hospitals will accept a HITRUST certification as evidence of a robust security program. No questionnaires or further dialog is necessary.

« Older Entries

HIPAA Business Associate

Secure Remote Access: Third-Party Risks

Telework Security: Securing Home and Remote Workers

SaaS Providers can reduce HITRUST certification costs with HITRUST Inheritance Program

Infected by your Computer Company

Sell More to Hospitals with a HITRUST Certification

Eagle Topics

Eagle Consulting Solutions

Get Our Newsletter

Recent Posts

HIPAA Policies – Instant Downloads

Pin It on Pinterest