1. Latest News
  2. Submit Press Release
  1. PR Home
  2. Latest News
  3. Feeds
  4. Alerts
  5. Submit Free Press Release
  6. Journalist Account
  7. PRNewswire Distribution
NCHICA Logo

NCHICA Vendor Management Policy Template Helps Covered Entities Comply with HITECH

Template developed to help covered entities and vendors streamline the Business Associate Agreement process. Useful for compliance with stringent business associate requirements contained in the HITECH Act.

 
PRLog - Oct. 2, 2012 - RESEARCH TRIANGLE PARK, N.C. -- RESEARCH TRIANGLE PARK, NC (October 2, 2012) – The North Carolina Healthcare Information and Communications Alliance, Inc. (NCHICA) has published a Vendor Management Policy Template to help covered entities address the privacy and security challenges of managing multiple vendors with varying degrees of access to sensitive health information.

The template was developed by NCHICA’s Privacy and Security Officials Workgroup in recognition that vendors have different security and privacy risk profiles. Under the original HIPAA Security and Privacy Rules, all covered entities were required to execute a Business Associate Agreement (BAA) with any vendor, regardless of the level of risk.  The template’s management framework defines standard tiers based on vendor risk and establishes a minimum set of oversight controls based on preset risk categories. This is particularly important as covered entities seek to comply with the more stringent business associate requirements contained in the national Health Information Technology for Economic and Clinical Health (HITECH) Act.

“We believe this template will be of great benefit to both covered entities and vendors by streamlining the BAA process,” said Holt Anderson, Executive Director of NCHICA. “It is our hope the vendor management approach will be widely adopted by the healthcare industry, which will help align covered entity and vendor expectations based on the services to be provided. By setting consistent expectations across the healthcare industry, we can reduce audit and compliance costs.”

   While the template has been targeted for the healthcare industry, the principles included should have broad appeal in many other verticals, including manufacturing, financial, services, auditing, software development, marketing or any other domain where either regulated or sensitive intellectual property is created, hosted or processed by a third party.

The template can be downloaded for $50 from the NCHICA website. For further information, visit http://www.nchica.org.

NCHICA is a nonprofit consortium of over 220 organizations representing the many sectors of the healthcare industry. NCHICA’s mission is to assist its members in accelerating the  transformation of the U.S. healthcare system through the effective use of information technology, informatics and analytics.

--- End ---

Click to Share

Contact Email:
***@nchica.org Email Verified
Source:NCHICA
Phone:9195589258
Zip:27709-3048
City/Town:Research Triangle Park - North Carolina - United States
Industry:Health, Security
Tags:privacy, security, hitech, hipaa, Business Associate Agreement
Shortcut:prlog.org/11988568
Disclaimer:   Issuers of the press releases are solely responsible for the content of their press releases. PRLog can't be held liable for the content posted by others.   Report Abuse

Latest Press Releases By “

More...

Trending News...



  1. SiteMap
  2. Privacy Policy
  3. Terms of Service
  4. Copyright Notice
  5. About
  6. Advertise
Like PRLog?
9K2K1K
Click to Share