Q&A: Notices of privacy practices
HIPAA Weekly Advisor, February 16, 2009
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Q. Do notices of privacy practices (NPP) apply to business associates of a covered entity, such as a billing agency for a hospital?
A. A covered entity (e.g., a hospital) issues an NPP to tell patients what information it collects about them, how it will use that information, and what patients’ rights are with respect to their information. The NPP does not provide any specific protection for the hospital, and it does not apply to business associates, such as a billing agency. However, the covered entity (hospital) must have a business associate agreement with the billing agency to protect the information the billing agency can access.
Editor's note: Mary Brandt, president of Bellaire, TX-based Brandt & Associates, LLC, answered this question. This is not legal advice. Consult your attorney regarding legal matters.
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
-
Guide to HIPAA Auditing, Second Edition
This new edition of a best-selling book delivers the hands-on tools and guidance you need to conduct effective in-house...
-
HIPAA Training Handbook for Business Associates
Train all of your staff members with this handbook and others in the 2009 HIPAA Handbook Series. Ensure they understand...
-
HIPAA Handbook for Executive, Administrative and Corporate Staff
Train all of your staff members with this handbook and others in the 2009 HIPAA Handbook Series. Ensure they understand...
-
The No-Hassle Guide to HIPAA Policies: A Privacy and Security Toolkit
HIPAA regulations require extensive documentation—likely more than you've done in the past. Changing the way you look...
-
The HIPAA and HITECH Toolkit
The HIPAA and HITECH Toolkit is a valuable resource that helps both CEs and BAs understand and meet the HITECH Act's...
Most Popular
- Articles
-
- HealthDataInsights posts new issues for medical necessity claims
- HIPAA Q&A: Flu shot requirement for hospital employees
- New FAQ posted on storing laryngoscope blades
- Q&A: Incidental disclosures and patient privacy
- What does case-mix index mean to you?
- Tip of the Week: Treat faculty orientation like resident orientation
- Sneak Peek: Effort underway to establish caseload benchmarks
- Capturing all necessary codes for IUD insertion and removal can be challenging
- Topic: CMS, OESS post new security compliance review information, checklist
- Q/A: New device pass-through categories
- E-mailed
-
- What does case-mix index mean to you?
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HHS task force: Consider privacy, security with text messages
- HIPAA Q&A: Flu shot requirement for hospital employees
- Tip: Know the common bunionectomy procedure codes and how to use them
- Code changes should help ease the pain when coding for facet joint injections
- Documentation and coding for toxic metabolic encephalopathy
- News and briefs: UA study links lack of empathy in residents to long shifts
- OB services: Coding inside and outside of the package
- Discharge Planning Under the MDS 3.0
- Searched