Managing protected health information (PHI) responsibly is essential for any clinician working with sensitive patient data. At Berries, we’re committed to supporting your HIPAA compliance every step of the way. This article explains how our Business Associate Agreement (BAA) that is based on the U.S. Department of Health and Human Services guidelines works and what it means for you.
What Is a BAA?
A Business Associate Agreement is a legal requirement under HIPAA. It outlines how PHI is handled by a service provider like Berries on behalf of a healthcare professional or organization, known as a covered entity. The BAA ensures that both parties follow HIPAA rules when handling patient data.
Is a BAA Included When I Use Berries?
Yes. By creating a Berries account and using our platform, you’re automatically covered under our BAA. There’s no need to sign anything separately. Our BAA is included in our Terms of Use, and you can view it at any time here.
How Does Berries Use and Protect PHI?
We only use PHI to deliver and support our services. Berries does not use your data for any unrelated purposes. To protect PHI, we implement strong administrative and technical safeguards across our systems. This includes encryption, access control, and regular staff training.
What Happens if There’s a Security Issue?
If PHI is ever accessed or disclosed inappropriately, we’ll let you know as quickly as possible and take action to minimize any risk. In the case of a breach involving unsecured PHI, we follow all HIPAA requirements for notification and remediation.
Do Subcontractors Follow the Same Rules?
Yes. If Berries works with third parties who might come into contact with PHI, they are required to sign agreements that hold them to the highest privacy and security standards.
Can I Access or Correct PHI?
Absolutely. You retain full rights to access and update any PHI we store on your behalf. If a patient requests access or correction, we’ll help you fulfill that request within HIPAA’s required timeframes.
Need More Information?
You can review the details of our BAA that is based on the U.S. Department of Health and Human Services guidelines by following this link.
For any further questions, feel free to reach out to us at [email protected]. We are here to help and honored to support you in your truly important work.
This section is intended for informational and educational purposes only. Berries is not a law firm, and the content provided does not constitute legal advice. All statements, opinions, recommendations, and conclusions are solely those of the author and are provided on an “as-is” basis. Berries makes no representations regarding the accuracy or completeness of the information and disclaims any responsibility for it.