{"id":127,"date":"2011-06-16T15:55:00","date_gmt":"2011-06-16T15:55:00","guid":{"rendered":"https:\/\/med.sites.unc.edu\/security\/hipaa\/business-associate-agreements\/"},"modified":"2024-10-09T20:16:37","modified_gmt":"2024-10-09T20:16:37","slug":"business-associate-agreements","status":"publish","type":"page","link":"https:\/\/www.med.unc.edu\/security\/hipaa\/business-associate-agreements\/","title":{"rendered":"Business Associate Agreements"},"content":{"rendered":"<p>A business associate (BA) is a person, or entity, that performs a function or service on behalf of or to a HIPAA covered entity (CE) where the work involves access to, transmission of, or storage of the CE\u2019s Protected Health Information (PHI).\u00a0 The University can serve as the CE or the BA.<\/p>\n<p>To ensure that PHI is handled appropriately by outside vendors and entities, a business associate agreement (BAA) may be required.\u00a0 A BAA is a contract between a CE and a BA which is a requirement of the HIPAA Privacy Rule.\u00a0 The BAA details how PHI is handled, disclosed and safeguarded by the BA.<\/p>\n<p>For more information on the procedure for executing a BAA, please reference the <a href=\"https:\/\/privacy.unc.edu\/protect-unc-information\/hipaa\/business-associate-agreements-baas\/\">University\u2019s Institutional Privacy Office website<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A business associate (BA) is a person, or entity, that performs a function or service on behalf of or to a HIPAA covered entity (CE) where the work involves access to, transmission of, or storage of the CE\u2019s Protected Health Information (PHI).\u00a0 The University can serve as the CE or the BA. To ensure that &hellip; <a href=\"https:\/\/www.med.unc.edu\/security\/hipaa\/business-associate-agreements\/\" aria-label=\"Read more about Business Associate Agreements\">Read more<\/a><\/p>\n","protected":false},"author":80868,"featured_media":0,"parent":7,"menu_order":12,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":"","_links_to":"","_links_to_target":""},"class_list":["post-127","page","type-page","status-publish","hentry","odd"],"acf":[],"_links_to":[],"_links_to_target":[],"_links":{"self":[{"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/pages\/127","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/users\/80868"}],"replies":[{"embeddable":true,"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/comments?post=127"}],"version-history":[{"count":0,"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/pages\/127\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/pages\/7"}],"wp:attachment":[{"href":"https:\/\/www.med.unc.edu\/security\/wp-json\/wp\/v2\/media?parent=127"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}