Case Study: Sutherland Healthcare Solutions

Best Practices for Data Breach Notification and Response by a HIPAA Business Associate

Sooner or later, all healthcare organizations will experience a security or privacy incident involving patient data—either within its own walls or at the hands of a business associate. Given the complexities of the HIPAA Final Rule and numerous state laws, managing a compliant breach response is no easy feat. What’s more, many business associates have multiple covered entities as clients. The negative effects of a potential breach in these cases can be exponential.