covered entity

cov·ered en·ti·ty

(kŭv'ĕrd en'ti-tē)
Any health care plan, provider, or service that transmits health care information in an electronic form and is thereby governed by laws and regulations in the handling of such data.
Mentioned in ?
References in periodicals archive ?
Indemnity reinsurance" means an agreement between one or more reinsuring companies and a covered entity under which (1) the reinsuring company agrees to accept, and to indemnify the issuing company for, all or part of the risk of loss under policies specified in the agreement, and (2) the covered entity retains its liability to, and its contractual relationship with, the individuals whose health risks are insured under the policies specified in the agreement.
A covered entity may use or disclose protected health information to a public or private entity authorized by law or by its charter to assist in disaster relief efforts, for the purpose of coordinating with such entities the uses or disclosures permitted by paragraph (b) (1) (ii) of this section.
The [HIPAA] Privacy Rule requires that a covered entity obtain satisfactory assurances from its business associate that the business associate will appropriately safeguard the protected health information it receives or creates on behalf of the covered entity.
It is incumbent upon the covered entities to define which kind of situations would require emergency access; it's implied that a service provider who maintained ePHI on behalf of a covered entity or business associate is also responsible for accommodating these situations, regardless of whether the ePHI is encrypted or not.
A covered entity aware of a material breach or violation of the contract must report the problem to the HHS Office for Civil Rights (OCR).
Not all health information held by a covered entity is subject to HIPAA.
Under the omnibus rule, a business associate is defined as any person or entity that creates, receives, maintains, or transmits protected health information (PHI) on behalf of a covered entity The regulation includes patient safety organizations, data transmission organizations, personal health record vendors, entities that transmit and need routine access to PHI, and data storage vendors--paper based and cloud based.
Protected health information (PHI) is individually identifiable health information that is held or transmitted by a covered entity.
Under the omnibus rule, a business associate is defined as any person or entity that creates, receives, maintains, or transmits protected health information (PHI) on behalf of a covered entity.
Where reliance is placed by a covered entity on identification measures already performed by a third party on a prospective customer (in accordance with criteria established in legislation), Jersey requires that covered entity to obtain all necessary CDD information from the third party before the beginning of the business relationship with the customer.
A covered entity may not ask the customer or client with a service animal for paperwork supporting his or her need for the service animal; nor may a covered entity ask what his or her disability is.
A covered entity that is a government agency administering a government program providing public benefits may disclose protected health information relating to the program to another covered entity that is a government agency administering a government program providing public benefits if the programs serve the same or similar populations and the disclosure of protected health information is necessary to coordinate the covered functions of such programs or to improve administration and management relating to the covered functions of such programs.