An out-of-date business associate agreement and its potential Health Insurance Portability and Accountability Act violations came with a $400,000 price tag for business associate Care New England Health System.
Care New England Health System entered into a business associate agreement with Woman & Infants Hospital of Rhode Island in March 2005. Under the agreement, CNE would provide WIH with centralized corporate support including technical support and information security for WIH’s information systems.
In November 2012, WIH reported to OCR the loss of unencrypted backup tapes containing the ultrasound studies of approximately 14,000 individuals, including patient name, data of birth, date of exam, physician names and, in some instances Social Security numbers.
The business associate agreement, which was updated as a result of the OCR investigation in August 2015, failed to include revisions required under the January 2013 HIPAA Omnibus final rule.
The OCR investigation found that:
Could Have Cost More
Covered entities and business associates can be subject to even larger fines for failing to institute a HIPAA-compliant business associate agreement, as some were earlier this year.
In April 2016, Raleigh Orthopaedic Clinic, P.A. of North Carolina agreed to pay $750,000 to settle charges it potentially violated HIPAA. The company disclosed the PHI of approximately 17,300 patients to a potential business associate without securing a business associate agreement.
In March 2016, an OCR investigation found that North Memorial Health Care of Minnesota didn’t enter into a business associate agreement or perform a risk analysis of the organization. The electronic PHI of over 9,000 individuals was compromised when an unencrypted, password protected laptop was stolen from an employee of the business associate, who later agreed to pay $1,550,000.
Gain access to the most reliable source for comprehensive pension and benefits and executive compensation research with a free trial to the Benefits Practice Resource Center.
All Bloomberg BNA treatises are available on standing order, which ensures you will always receive the most current edition of the book or supplement of the title you have ordered from Bloomberg BNA’s book division. As soon as a new supplement or edition is published (usually annually) for a title you’ve previously purchased and requested to be placed on standing order, we’ll ship it to you to review for 30 days without any obligation. During this period, you can either (a) honor the invoice and receive a 5% discount (in addition to any other discounts you may qualify for) off the then-current price of the update, plus shipping and handling or (b) return the book(s), in which case, your invoice will be cancelled upon receipt of the book(s). Call us for a prepaid UPS label for your return. It’s as simple and easy as that. Most importantly, standing orders mean you will never have to worry about the timeliness of the information you’re relying on. And, you may discontinue standing orders at any time by contacting us at 1.800.960.1220 or by sending an email to email@example.com.
Put me on standing order at a 5% discount off list price of all future updates, in addition to any other discounts I may quality for. (Returnable within 30 days.)
Notify me when updates are available (No standing order will be created).
This Bloomberg BNA report is available on standing order, which ensures you will all receive the latest edition. This report is updated annually and we will send you the latest edition once it has been published. By signing up for standing order you will never have to worry about the timeliness of the information you need. And, you may discontinue standing orders at any time by contacting us at 1.800.372.1033, option 5, or by sending us an email to firstname.lastname@example.org.
Put me on standing order
Notify me when new releases are available (no standing order will be created)