Several entities are considered covered entities under the Health Insurance Portability and Accountability Act (HIPAA). These entities include health plans, health care clearinghouses, organizations, individuals, and government agencies.
There are a number of rules that address the protection of sensitive patient information under HIPAA. Some of these rules focus on security, access, and privacy.
HIPAA defines "health care provider" as a person or organization that provides health care, including hospitals, doctors, and pharmacies. Some employers also operate group health plans for their employees. Government agencies, such as the Department of Social Services, can also be considered health care providers.
Other entities that are considered covered entities include health plans, health care clearinghouses, health insurance companies, and health maintenance organizations. These organizations must comply with the Privacy Rule and the Security Rule.
Health plans are the entities that pay for the medical care of a patient. These organizations also receive and transmit PHI.
Other entities that are considered covered entities under HIPAA include research and clinical trials, and physicians administering experimental therapeutics. Physicians who conduct clinical studies are also required to comply with the Privacy Rule.
HIPAA also requires that businesses associate with covered entities to maintain the security and privacy of protected information. Some of these business associates include billing companies, data storage companies, transcriptionists, and third-party administrators.
Some employers have chosen to be considered hybrid entities under HIPAA. This designation allows local governments to limit the requirements of HIPAA.
SITES WE SUPPORT
SOCIAL LINKS