HITEQ Center / Friday, September 30, 2016 / Categories: Privacy and Security, HIPAA Mitigating Office for Civil Rights Auditing Risks Guidance from the Office for Civil Rights The Office for Civil Rights (OCR) has recently announced the release of a new set of FAQs that seeks to address whether business associates of a HIPAA covered entity may block or terminate access by the covered entity to the protected health information maintained by the business associate for or on behalf of the covered entity. The OCR guidance seeks to clarify that business associates may not use PHI in any manner that may result in a violation of the HIPAA Rules. Print 21896 Tags: ePHIPHIHIPAAOCRBusiness AssociatesOffice of Civil RightsProtected Health Information Resource Links A link to the FAQ on the OCR websiteMay a business associate of a HIPAA covered entity block or terminate access by the covered entity to the protected health information (PHI) maintained by the business associate for or on behalf of the covered entity? Related Resources Health Center Emergency Response Resources Digital Health Strategy to Enable Comprehensive Care: Navigating Regulatory Waters- Compliance and Considerations Health Center Resilience in the Face of Cyber Adversity Individuals’ Access and Use of Patient Portals and Smartphone Health Apps, 2022 Information Blocking Rule Requirements for Part 2 Data in Patient Portals