Trouble with images? View as a Web page.

Polsinelli - Health Care

September 2013


Polsinelli Releases a HIPAA Business Associate Guide


Health Care Attorneys:


Matthew J. Murer

Practice Area Chair


Jane E. Arnold

Practice Area Vice Chair


Colleen M. Faddick

Practice Area Vice Chair


Alan K. Parver

Practice Area Vice Chair


Lisa J. Acevedo
Janice A. Anderson
Douglas K. Anning
Joi-Lee K. Beachler
Jack M. Beal
Cynthia E. Berry
Margaret "Peggy" Binzer
Mary Beth Blake
Mary Clare Bonaccorsi
Gerald W. Brenneman
Teresa A. Brooks
Jared O. Brooner
Ana I. Christian
Anika D. Clifton
Anne M. Cooper
Lauren P. DeSantis-Then
S. Jay Dobbs
Thomas M. Donohoe
Cavan K. Doyle
Meredith A. Duncan
Erin Fleming Dunlap
Fredric J. Entin
Jennifer L. Evans
T. Jeffrey Fitzgerald
Michael T. Flood
Kara M. Friedman
Rebecca L. Frigy
Asher D. Funk
Randy S. Gerber
Mark H. Goran
Linas J. Grikis
Lauren Z. Groebe
Brett B. Heger
Jonathan K. Henderson
Margaret H. Hillman
Jay M. Howard
Cullin B. Hughes
Sara V. Iams
George Jackson, III
Samuel H. Jeter
Bruce A. Johnson
Lindsay R. Kessler
Joan B. Killgore
Anne L. Kleindienst
Chad K. Knight
Sarah R. Kocher
Dana M. Lach
Robert L. Layton
Jason T. Lundy
Ryan M. McAteer
Jane K. McCahill
Ann C. McCullough
Matthew Melfi
Ryan J. Mize
Aileen T. Murphy
Hannah L. Neshek
Gerald A. Niederman
Edward F. Novak
Thomas P. O'Donnell
Aaron E. Perry
Mitchell D. Raup
Daniel S. Reinberg
Kristen B. Rosati
Donna J. Ruzicka
Charles P. Sheets
Kathryn M. Stalmack
Leah Mendelsohn Stone
Chad C. Stout
Steven K. Stranne
William E. Swart
Tennille A. Syrstad
Emily C. Tremmel
Andrew B. Turk
Joseph T. Van Leer
Andrew J. Voss
Joshua M. Weaver
Emily Wey
Mark R. Woodbury
Janet E. Zeigler


To learn more about our Health Care practice, or to contact one of our Health Care attorneys, click here.


View Polsinelli documents on JD Supra  
LinkedIn Twitter Facebook Inside Law Podcast Connect with us on LinkedIn. Connection with us on Twitter. Connect with us on Facebook.



In 2009, the Health Information Technology for Economic and Clinical Health Act ("HITECH") modified a number of provisions of the Health Insurance Portability and Accountability Act ("HIPAA") to strengthen HIPAA's privacy and security protections. One significant aspect of HITECH is that Business Associates now have to comply with much of HIPAA and are subject to enforcement and penalties by the HHS Office for Civil Rights ("OCR"). In January, OCR published amendments to the HIPAA Regulations that Business Associates need to know.

Put simply, Business Associates are people or organizations that perform a service for a HIPAA "Covered Entity" (usually a health care provider or a health insurance plan), if the Business Associate will use, disclose, or maintain Protected Health Information ("PHI") in performing that service. For examples, Business Associates might include attorneys, accountants, consultants, software vendors, accrediting organizations, and management companies – if they have access to PHI. Under the new regulations, Business Associates also include health information organizations, e-prescribing gateways, other entities that provide data transmission services, entities that offers a personal health record on behalf of a Covered Entity, and data storage companies or cloud-computing companies.

On September 23, 2013, Business Associates are required to comply with the new regulations. Polsinelli has developed a template HIPAA Business Associate Policy and Agreement Guide (the "HIPAA Business Associate Guide"). The HIPAA Business Associate Guide is a comprehensive document that can be easily adapted to fit an organization's structure and specific function as a Business Associate.

The HIPAA Business Associate Guide contains (i) a simple introduction explaining whether a company is subject to HIPAA and the consequences of non-compliance; (ii) thirty-three template policies and procedures to implement Business Associate obligations under the HIPAA Regulations; (iii) a detailed overview of HIPAA, HITECH and the HIPAA Regulations; and (iv) a sample business associate agreement and a sample subcontractor business associate agreement. The Business Associate HIPAA Guide will serve as a tremendous tool in assisting any Business Associate in its HIPAA compliance efforts.

For More Information

For questions regarding the content of this e-Alert, please contact:



Chattanooga  Chicago  Dallas  Denver  Edwardsville  Jefferson City  Kansas City  Los Angeles  New York  Overland Park
Phoenix  St. Joseph  St. Louis  Springfield  Topeka  Washington, D.C.  Wilmington



Real Challenges. Real Answers.SM  Serving corporations, institutions, entrepreneurs, and individuals, our attorneys build enduring relationships by providing legal counsel informed by business insight to help clients achieve their objectives. This commitment to understanding our clients' businesses has helped us become the fastest growing law firm in the U.S. for the past five years, according to the leading legal business and law firm publication, The American Lawyer. Our more than 670 attorneys in 17 cities work with clients nationally to address the challenges of their roles in health care, financial services, real estate, life sciences and technology, energy and business litigation. The firm can be found online at Polsinelli PC. In California, Polsinelli LLP.


To update your email preferences, please contact Kim Auther at To opt out of these communications, click the unsubscribe link below.

Polsinelli provides this material for informational purposes only. The material provided herein is general and is not intended to be legal advice. The choice of a lawyer is an important decision and should not be based solely upon advertisements.

Copyright © 2013 Polsinelli PC.

Connect with us on LinkedIn. Connection with us on Twitter. Connect with us on Facebook.