HIPAA Compliance Officer: designated individual within each Covered Component who is responsible for component-specific HIPAA compliance HIPAA Compliance Coordinator: designated individual who oversees and coordinates university-wide compliance efforts Unless otherwise defined, all capitalized terms in this Policy have the same definitions found in HIPAA (45 CFR Parts 160, 162, and 164).īusiness Associate: a person or entity that performs certain functions or activities that involve the use or disclosure of Protected Health Information (PHI) on behalf of, or provides services to, a Covered Entity.Ĭovered Entity: a health care provider that conducts certain transactions electronically, a health plan, or a health care clearing house This Policy applies to all University Health Care Component Workforce members all other persons whose conduct, in the performance of work for a Health Care Component, is under the direct control of such Health Care Component, regardless of whether they are paid by the Health Care Component and to all other persons who perform services for or on behalf of a Health Care Component that functions as a Business Associate for a non-University entity. Stakeholder Most Impacted by the Policy.Identify Western Michigan University (WMU or the University) as a Hybrid Entity Īcknowledge that the University performs certain activities that meet the definitions of a “Covered Entity” and “Business Associate” Įstablish the University's commitment to maintaining a broad operational framework for the Privacy, Security, and Breach Notification Rules found in HIPAA andĮnsure all members of the University community understand their rights and obligations with regard to the privacy, security, and integrity of Protected Health Information (PHI). Revise consistent with current law and practice put in template identify University hybrid entity components.
0 kommentar(er)
