http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspxEarly last May, I posted an entry that described our position regarding the relationship of HealthVault to HIPAA . In short, our interpretation was that HealthVault did not fall under the definition of a Covered Entity or a Business Associate as defineden-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspx#9691689Wed, 03 Jun 2009 19:12:43 GMT91d46819-8472-40ad-a661-2c78acb4018c:9691689Mark Heaney<p>That's awesome. I've been working with a number of organizations that have been trying to skirt the boundaries of HIPAA but with the line moving and blurring lately it's almost impossible. </p> <p>Just recently a few have decided, similar to you, that they already go beyond HIPAA requirements for security and privacy it's time to stop playing games and just accept being BAAs. </p> <p>While it would be nice for the government to get its act together and make the HIPAA rules clear and permanent, we can't wait for that. We've got important work to do. </p>http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspx#9691831Wed, 03 Jun 2009 19:48:15 GMT91d46819-8472-40ad-a661-2c78acb4018c:9691831Jan Oldenburg<p>That's great to hear, Sean. It certainly reduces the risks for organizations partnering with you. &nbsp;I think it will also increase consumer confidence in connected solutions.</p>http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspx#9692387Wed, 03 Jun 2009 22:45:36 GMT91d46819-8472-40ad-a661-2c78acb4018c:9692387David Harlow<p>Glad to see this development. &nbsp;While there is no reason to doubt the good faith behind the TOS which you say go above and beyond HIPAA requirements, many partners (and their lawyers -- since we have the occupational disability of assuming that things like the TOS will change and everyone who meant what they said will no longer be around) will feel much more comfortable with the BAA in hand. &nbsp;Are you taking an expansive view with respect to BAA's called for by ARRA? (i.e. will you count yourselves among the non-business-associates-who-are-supposed-to-sign-BAA's-anyway?) </p>http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspx#9695965Thu, 04 Jun 2009 03:36:20 GMT91d46819-8472-40ad-a661-2c78acb4018c:9695965Trusted.MD Network<p>In a post today, Sean Nolan, Chief Architect of Microsoft Health Solutions and blogger at Family Health Guy explains Microsoft's position regarding whether Microsoft HealthVault is required to comply with the privacy standards under the Health Insuranc</p>http://blogs.msdn.com/familyhealthguy/archive/2009/06/03/you-put-your-right-hipaa-in.aspx#9700542Fri, 05 Jun 2009 03:50:33 GMT91d46819-8472-40ad-a661-2c78acb4018c:9700542hlthblog<p>Good move, Sean and team. &nbsp;Painful yes, but definitely the right thing to do. &nbsp;This will significantly help provider organizations and others that are being held back by uncertainty around HIPAA and the BAA.</p> <p>Bill Crounse, MD</p>