Proposed OCR instructions: other situations where a matching contract is not required. interoperability. When several counterparties of a common covered unit are software providers that provide interface software to meet the interoperability requirements of the company concerned, in accordance with the terms of their respective and separate service agreements with the company concerned. Each counterparty simply acts on its own behalf as a counterparty to the registered business and not as a “subcontractor counterpart” to the other. We talk to development shops and suppliers who always do this wrong. Here are three of the most common false beliefs we hear: Section 1.7. Access to information. EF provides PHI to the covered unit as long as the EF manages the PHI in a designated registration set. If the EF receives a request for access to the PHI directly from an individual, the EF sends this request to the covered unit within ten (10) working days. The covered company is solely responsible for authorizing a request for access to the PHI and accessing the person. Covered companies may be fined for not entering into a HIPAA counterparty agreement or for entering into an incomplete agreement – while HITECH 78 FR 5574 AAS are required to comply with the HIPAA safety rule, even if no HIPAA counterparty agreement is reached.
2. Explain the liability limits of the insured company. Some companies or registered counterparties insist that matching agreements be entered into because they mistakenly believe that they are held responsible for hipaa offences committed by the contractor. HIPAA specifies that covered companies or counterparties are only responsible for the activities of their counterparties or subcontractors if the counterparty or subcontractor acts as the representative of the covered entity, i.e. the covered entity has the right to control the activities of the counterparty or subcontractor. (45 CFR 160.402 (c); 78 FR 5581). The parties can avoid liability by nature by ensuring that any contract between them clearly identifies the counterparty or subcontractor as an independent contractor and not as a representative and that the company concerned does not control the activities or activities of the counterparty or contractor.