Don't rely on experience or a statement on a website saying they are HIPAA compliant. Covered entities need written assurances from business associates, and resources permitting, you may want to request a copy of their HIPAA policy. You can get a flavor for how seriously the vendor takes privacy by looking at a subset of their policies."
— William Roberts, with Shipman & Goodwin in Hartford, Conn., told a recent webinar sponsored by the Health Care Compliance Association.
No comments:
Post a Comment