From ComputerWorld comes this nice little piece on Business Associate Agreements:
"...as with any expanding trend, there are growing pains.
In the medical field, the apparent complexity of the do's and don'ts of using patient information has become an increasing cause of concern among physicians and their IT vendors. The perceived density of the Health Insurance Portability and Accountability Act of 1996 and its related regulations has
contributed to this concern. When the acronym "HIPAA" is used, eyes roll and then glaze over. " Full article here.
Clearly, this was written by a lawyer, which isn't really a bad thing. Administrators, lawyers, care providers, IT, and educators, we are all in this gigantic HIPAA mind-meld together. What eventually
emerges will be a clearer understanding of what needs to be done. Or at
least a better recipe for bloody marys.