This article explores HIPAA compliance as follows:
- Must Canadian Firms Comply?
- 2015 Prediction from OCR Attorney
- Conversation with Montréal Company
- Finding Worry-Free Partners
Must Canadian Firms Comply?
Many healthcare businesses operating in the United States are actually based in other countries, and there is often confusion about the extent to which those companies must meet HIPAA law. There are no exceptions: any business that processes, stores, or transfers protected health information (PHI) must follow the privacy, security, and breach notification rules described in Title II of the Health Insurance Portability and Accountability Act of 1996, regardless where they are headquartered.