Know the Rules. HIPAA Business Associate Agreement Playbook

The HIPAA Rules generally require that Covered Entities and Business Associates enter into a Business Associates Agreement (BAA) with their Business Associates to ensure that the Business Associates appropriately safeguard protected health information (PHI). This playbook provides guidelines and drafting tips for commonly negotiated provisions in BAAs between a "Covered Entity" (e.g., an employer-sponsored health plan, a health insurance company, a healthcare clearinghouses, healthcare providers, hospitals, physicians, pharmacies, nursing homes, etc.) that are subject to the Health Insurance Portability and Accountability Act (HIPAA), and a third-party service provider that will handle PHI on behalf of the Covered Entity (a "Business Associate"). 

READ NOW »

Related Content

• HIPAA Business Associate Agreement
  Apply this template covering the specific business associate agreement requirements under HIPAA's Security and Privacy Rules (see 45 C.F.R. §§ 164.314(a) and 164.504(e)), as amended by Health Information Technology for Economic and Clinical Health Act (HITECH).

• HIPAA Business Associate Subcontractor Agreement
  Use this template/agreement for business associate subcontractors if you handle a covered entity’s protected health information (PHI). It applies to a service provider to an entity covered by HIPAA and a subcontractor of the service provider. This template includes practical guidance, drafting notes, and alternate and optional clauses.

Practical Guidance Updates 
Featuring the latest updates from your Practical Guidance account.    

• Employee Benefits & Executive Compensation Key Legal Developments Tracker (Current)
  Stay informed on new developments.
  • Retirement Plans. The U.S. Department of Labor's EBSA Division has rescinded its 2022 compliance releasethat previously discouraged fiduciaries from including cryptocurrency options in 401(k) retirement plans. DOL, News Release.
  • Executive, Incentive and Equity-Based Compensation. The DOL’s Wage and Hour Division advised that it will cease to enforce the Biden administration’s rule defining the term “independent contractor” under the Fair Labor Standards Act (FLSA) (which aimed to reclassify gig workers as employees rather than independent contractors), instead relying on criteria set forth in a DOL 2008 Fact Sheet.Field Assistance Bulletin No. 2025-1; News Release.
• What’s New in Practical Guidance
  Discover the newest Practical Guidance content and resources in  this update. This guide is designed to help you find the tools and insights you need to work more efficiently and effectively.
• Document alerts allow you to stay current on legal developments that affect your practice. Find out how to set up your document alerts.
• Review the Chevron Reversal Impact Resource Kit for analysis related to the Supreme Court’s decision to overturn four decades of deference to federal agency interpretations of ambiguous statutes.
• Keep current on Trump administration developments by referencing the the Presidential Executive Actions Tracker, Legal Challenges to 2025 Presidential Executive Orders and Actions Tracker, Executive Orders, EEOC Letters, and Other Actions Concerning Law Firms Tracker, and Trump Transition Resource Kit for up-to-date developments from the second Trump Administration.
• Generative Artificial Intelligence (AI) Resource Kit is a frequently updated collection of current Practical Guidance materials on generative AI, ChatGPT, and similar tools.
• New! Practical Guidance Journal, 2025 Second Edition features guidance for regulating AI in the workplace in 2025, Intellectual Property issues related to deepfakes, the emergence of AI in mergers and acquisitions, and a checklist to help when evaluating AI technology risks.
• Browse the Practical Guidance Author Center to see the 2600+ leading attorney authors contributing to our 26 practice areas. Interested in becoming a Practical Guidance author? Click here for details. Practical Guidance is committed to amplifying diverse voices of attorneys across all differences, including gender and race.
• Legal Developments provide the latest updates and analyses of emerging topics impacting your practice area. Visit the Legal Developments page to see the latest topics, which also include breaking legal news and related Practical Guidance content. 
• New and Updated Practical Guidance Content
  • Independent Contractor Agreement Playbook (Pro-service Recipient)
  • Independent Contractor Agreement Playbook (Pro-service Provider)
  • Restricted Stock Awards (Private Company) Training Presentation
  • Section 162(m) Covered Employee Worksheet
  • Retirement Plan Suits Show Value of Cybersecurity Policies
  • Excessive Fee Cases: Not Just for Retirement Plans Anymore
  • A Breakdown Of Trump's Order On Drug Pricing
  • DOL Tells 5th Circ. It Will Craft New ESG Rule For 401(k) Plans

PRACTICAL GUIDANCE CUSTOMER EMAIL EDITION ON THE WEB

Experience results today with practical guidance, legal research, and data-driven insights—all in one place.

Experience Lexis+