$31k HIPAA Settlement for Lack of Business Associate’s Agreement

In November, we shared the new HIPAA rules for Business Associates and now, we’re seeing the results. 19 days into 2017, 2 HIPAA fines amounting to $2.7 million were unleashed and the tolls mount.

The latest – a $31k HIPAA settlement for the failure of one Illinois specialist to procure a business associate’s agreement, resulted in the fine. The investigation could not find any business agreement signed prior to Oct. 12, 2015. In May of 2015, the Illinois Attorney General brought suit against FileFax for improper handling of PHI, charging that its employees had dumped thousands of paper medical records into an unlocked dumpster.

Avoid Costly Fees:

To avoid these costly fees, make sure your company:

– Has up-to-date Business Associate Agreements (BAAs) in place.

– Works with a NAID-certified partner such as SecurShred for responsible shredding, scanning, storing and e-cycling of all records.

– Puts in place a procedure for record keeping, storage and electronic destruction of outmoded equipment.

– Educates the organization on the proper handling of sensitive records and documents.

These audits dished out $23.5 million in fines last year, 2017 looks to intensify. If you’re not sure how to begin, schedule an appointment with us to work out a plan to keep your organization in compliance.