Illinois Provider Pays $31,000 HIPAA Settlement Due to Lack of BA Agreement | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Illinois Provider Pays $31,000 HIPAA Settlement Due to Lack of BA Agreement

April 21, 2017
by Heather Landi
| Reprints

The Center for Children’s Digestive Health has paid the U.S. Department of Health and Human Services (HHS) $31,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a corrective action plan, according to HHS.

CCDH is a small, for-profit health care provider with a pediatric subspecialty practice that operates its practice in seven clinic locations in Illinois. 

HHS reports that in August 2015, the HHS Office for Civil Rights (OCR) initiated a compliance review of the Center for Children’s Digestive Health following an initiation of an investigation of a business associate, FileFax, Inc., which stored records containing protected health information (PHI) for the healthcare provider. While Center for Children’s Digestive Health began disclosing PHI to Filefax in 2003, neither party could produce a signed Business Associate Agreement (BAA) prior to Oct. 12, 2015, according to HHS. Additionally, neither party could produce a signed BAA prior to Oct. 2015, HHS stated.

HHS also has issued guidance regarding business associate agreements, which can be found here.

 

Get the latest information on Cybersecurity and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

Report: Aetna, Apple in Talks about Offering Plan Members Apple Watches

Aetna, which already offers the Apple Watch to its employees as part of a wellness program, is now in talks with Apple about pushing the wearable device to the health insurer’s members, according to a report in CNBC.

HIMSS Accepting Nominations for Most Influential Women in Health IT Awards

The Healthcare Information and Management Systems Society (HIMSS) has announced that nominations are now open for the HIMSS Most Influential Women in Health IT Awards.

E-Visits May Have Unintended Consequences for Docs, New Research Finds

Physicians who adopt e-visits often see increases in office visits and phone consultations, a reduction in new patients being seen by providers, and no noticeable improvements in patient health, according to new research.

CMS Provides More Details on Proposal to Eliminate Mandatory Bundled Payment Programs

The Centers for Medicare and Medicaid (CMS) posted a press release Tuesday that provides more details regarding its proposal to change the Comprehensive Care for Joint Replacement Model and cancel the mandatory Episode Payment Models and Cardiac Rehabilitation Incentive payment model.

HHS Awards $105 Million to Community Health Centers for Quality Improvement

The U.S. Department of Health and Human Services (HHS) has awarded nearly $105 million to 1,333 health centers in all U.S. states, territories and the District of Columbia as an investment in quality improvement.

Survey: Healthcare Pros Challenged to Identify, Mitigate Medical Device Security Risks

More than one-third (36 percent) of surveyed professionals in the Internet of Things (IoT)-connected medical device ecosystem say their organizations have experienced a cybersecurity incident in the past year, according to a recent Deloitte poll.