• Revenue Cycle Management
  • COVID-19
  • Reimbursement
  • Diabetes Awareness Month
  • Risk Management
  • Patient Retention
  • Staffing
  • Medical Economics® 100th Anniversary
  • Coding and documentation
  • Business of Endocrinology
  • Telehealth
  • Physicians Financial News
  • Cybersecurity
  • Cardiovascular Clinical Consult
  • Locum Tenens, brought to you by LocumLife®
  • Weight Management
  • Business of Women's Health
  • Practice Efficiency
  • Finance and Wealth
  • EHRs
  • Remote Patient Monitoring
  • Sponsored Webinars
  • Medical Technology
  • Billing and collections
  • Acute Pain Management
  • Exclusive Content
  • Value-based Care
  • Business of Pediatrics
  • Concierge Medicine 2.0 by Castle Connolly Private Health Partners
  • Practice Growth
  • Concierge Medicine
  • Business of Cardiology
  • Implementing the Topcon Ocular Telehealth Platform
  • Malpractice
  • Influenza
  • Sexual Health
  • Chronic Conditions
  • Technology
  • Legal and Policy
  • Money
  • Opinion
  • Vaccines
  • Practice Management
  • Patient Relations
  • Careers

Complying with patient privacy laws


Know how to protect patients' information with billing companies.

Q I'm concerned that the billing company could fail to protect my patients' information. What does the billing company need to do to be in compliance with HIPAA?

A: Your billing company does, indeed, have to be in conformance with HIPAA. It has the same level of responsibility to safeguard confidential patient data that binds the practice, and it may have additional standards related to computer security and the electronic transmittal of data. Your responsibility is to have the billing company execute what is commonly known as a business associates agreement that assures you that it understands and complies with these regulations. Any healthcare attorney will have a form of this agreement, because it has become a rather standard form of legal assurance. Your local hospital or medical society also might share a form agreement with you for use with billing subcontractors. Beyond that, your responsibility is to make sure that your agreement with the billing company contains language that assures you that it recognizes its responsibilities in this respect and that it agrees to indemnify your practice for any breach of data that is traced to its negligence or omission.

Related Videos