Sample Business Associate Agreement

As of September 23, 2013, covered entities and business associates are liable for breaches involving protected health information (PHI). Following the implementation of the HIPAA Omnibus Rule, business associates are responsible for adequately protecting any information they handle and are now being held accountable for implementing and maintaining their own proper security and privacy measures. However, if no agreement establishing this responsibility has been provided and agreed upon, the associated covered entity may be held responsible in the event of a data breach.

Business associate agreements are designed to establish the working responsibilities of covered entities and their contracted partners and to protect both parties in the event of a data breach. Have you provided business associate agreements for your contracted vendors and partners? If not, your organization could be held liable should PHI be compromised. Our Sample Business Associate Agreement can serve as a template that you can modify specifically for your business or organization. Protect yourself by downloading today!