Templates
Healthcare
HIPAA Business Associate Agreement Checklist
HIPAA Business Associate Agreement Checklist

HIPAA Business Associate Agreement Checklist

Run this checklist to create and implement a HIPAA compliant business associate agreement
1
Introduction:
2
Enter basic details
3
Use and disclosure of PHI:
4
Describe the permitted use and disclosure of PHI
5
Define under what circumstances the BA must disclose PHI
6
Approval: Use and disclosure of PHI
7
Breach reporting and PHI destruction:
8
Specify how and when the BA must report any accidental disclosures of PHI
9
Specify how and when the BA is to return or effectively destroy all patient PHI
10
Approval: PHI breach reporting and destruction procedures
11
Security rule risk analysis:
12
Conduct a risk analysis of IT systems
13
Describe the safeguards that have been implemented
14
Approval: Security rule risk analysis
15
Cyber security training:
16
Conduct user training
17
Document training records
18
Approval: Training completed & documented
19
Terminating the agreement:
20
Specify your rights to terminate the BAA
21
Approval: Termination rights & obligations
22
Final steps:
23
Copy and file the BAA
24
Set date to review the BAA
25
Approval: BAA finalized & implemented
26
Sources:
27
Related checklists: