Here are some of the basic definitions of HIPAA compliance
Business Associate: A person or company that acts on behalf of a covered entity performing functions that involve the use or disclosure of Protected Health Information (PHI) for claims processing, billing, quality assurance, etc. Members of a covered entity’s work force are not business associates.
Covered Entity: All health plans, all health care clearinghouses, and any health care provider who transmits health information in electronic form in connection with a covered electronic transaction.
Designated Record Set (DRS): A record that contains information utilized and maintained for the purpose of making decisions about an individual’s health care.
Electronic Protected Health Information (ePHI): Individually identifiable health information that is transmitted, maintained or stored in electronic form.
Privacy: Scalable set of standards governing the patient’s rights over the use and disclosure of their own protected health information (PHI).
Protected Health Information (PHI): Individually identifiable health information maintained or stored in electronic or any other form or medium. It includes medical, demographic, and financial information about the patient.
Security: Specific measures a health care entity must take to protect ePHI from unauthorized breaches of privacy, or loss of integrity. It is scalable, flexible, and generally addressable.
Transactions: Electronic transmission of information between two parties to carry out financial or administrative activities related to health care.
Understanding these basic HIPAA terms is vital to your office being successfully compliant with the HIPAA regulations.
For questions about this topic, email me at firstname.lastname@example.org