Wellmark Blue Cross and Blue Shield | Who Must Comply With HIPAA-AS?

Who Must Comply?

»	Careers

»	Community

»	Company Information

»	Contact Us

»	Newsroom

»	Public Policy

»	Privacy & Legal

»	Code of Conduct

»	HIPAA-AS

	General Information:

»	What is Privacy?

»	Who Must Comply?

»	HIPAA-AS Q&A

»	HIPAA-AS Q&A For IT Vendors

	For Specific Audiences:

»	Privacy Practices Notice

»	For Employers

»	For Providers

»	For Brokers & Agents

»	Web Site Privacy

»	Information Security

»	Terms of Use

Printer-Friendly Page

Who Must Comply With HIPAA-AS?

Entities that must comply with HIPAA-AS regulations, or "covered entities," include:

Payers (insurers)
Clearinghouses
Health care practitioners and facilities
Health plans

Indirectly, all business associates or business partners of those entities listed above. A business associate is an individual or an entity that provides services or assists the covered entity in activities related to treatment, payment or health care operation. Contracts between covered entities and business associates must have provisions addressing restrictions on the business associate's use and disclosure of health information.

Quick Links


Authorization to Use or Disclose Protected Health Information

»		Individual Authorization - Iowa - #S-53258 (206KB)

»		Individual Authorization - South Dakota - #S-3315 (207KB)

»		Designation of Authorized Representative - Iowa - #S-53257 (159KB)

»		Designation of Authorized Representative - South Dakota - #S-3316 (161KB)

Authorized Representative Appointment and Authorization for Release of Information

»		Iowa - #C-5674 (41KB)

»		South Dakota - #C-3617 (37KB)

Privacy & Legal