Third-Party Protections

Key clauses of a HIPAA-compliant business associate agreement.
MedEsthetics October 2019

It’s common for healthcare facilities, including private practices, to contract out services such as bill collection, accounting, legal, lab work or transcription services. But farming out this work, though integral to the management of your business, can pose a risk to patient privacy.

Rules of Engagement: Patient Privacy

Understanding the most likely threats to patient privacy can help protect your practice against breaches and HIPAA violations.
MedEsthetics Nov/Dec 2018

When healthcare attorney Bradford E. Adatto, Esq. of Dallas-based firm ByrdAdatto opened the email, “My eyes almost fell out of my head,” he says. There was a message time stamped 11:00 p.m. from one of his clients, a plastic surgeon, asking him to call immediately. The doctor had been in surgery since 5:00 a.m. and when he checked his email that evening, a patient had sent a link to a review she had posted. “The patient had posted a negative review complaining about the poor outcome she’d experienced and stating that the doctor’s license should be pulled,” explains Adatto.