Mitigating Office for Civil Rights Auditing Risks
Guidance from the Office for Civil Rights
The Office for Civil Rights (OCR) has recently announced the release of a new set of FAQs that seeks to address whether business associates of a HIPAA covered entity may block or terminate access by the covered entity to the protected health information maintained by the business associate for or on behalf of the covered entity.
The OCR guidance seeks to clarify that business associates may not use PHI in any manner that may result in a violation of the HIPAA Rules.
21856
Resource Links
-
A link to the FAQ on the OCR websiteMay a business associate of a HIPAA covered entity block or terminate access by the covered entity to the protected health information (PHI) maintained by the business associate for or on behalf of the covered entity?