CenterNet
CHS Home CHS Home
OSU-CHS Oklahoma State University
Center for Health Sciences
Security Policies & Proceduress
Printer Friendly
Title: Business Associate Contracts and Other Agreements Policy: SEC 09.01
Category: HIPAA Compliance Authority: 45 CFR § 164.308 (b) (1)
HIPAA Section:
Standard: Business Associate Contracts Responsibility: Health Care Components
Effective Date: 04/20/2005 Page 1 of 1
Approved by: OSU Legal Counsel Revised:

Purpose
 To ensure the confidentiality of all EPHI when there is a need to secure services from outside entities in the process of treatment, payment and operations.
Policy

OSU will obtain from all vendors defined as Business Associates an agreement requiring the business associate adhere to HIPAA standards regarding the security of PHI.

CHS Procedure

Refer to CIC-1-04.01 in Privacy Policies
UHS Procedure
  1. UHS will identify all vendors who meet the criteria of business associates.


  2. For existing business associates, an amendment to their existing BA Agreement will be sent for their review, approval and signatures.


  3. For new vendors, the security amendments will be attached to the BA Agreement and this agreement will be executed prior to their receipt of any ePHI from UHS.


  4. OSU Legal Counsel is responsible for the preparation of such amendments as needed for the this policy.

 
Google
Web CHS Centernet (non-password areas only)
OSU-System | OSU-Stillwater | OSU-OKC | OSU-Tulsa | OSU-Okmulgee | OSU-CHS | Accessibility | Webmaster

Oklahoma State University - Center for Health Sciences
1111 W. 17th St., Tulsa, OK  74107 | 918.582.1972
Copyright © 2007 Oklahoma State University - All rights reserved