Breaches by Business Associates

February 10, 2022

Access the on-demand webinar here.

As a HIPAA covered entity, your health center thought it had protected itself when disclosing protected health information (PHI) to a vendor (business associate) by executing a business associate agreement (BAA) with all the HIPAA required provisions. Everything seemed to be going fine…until the business associate experienced a breach. Maybe your health center knew immediately because access to the systems or services provided by the business associate stopped or slowed.  Maybe the business associate notified your health center of a “potential security incident” it is investigating. Or maybe the business associate informed your health center that the investigation is complete and your health center’s PHI was impacted.

Given the increased number in cybersecurity attacks and the growing reliance on business associates to provide functions, activities and services for health centers, this webinar will prepare health centers to respond when a business associate reports a breach. The presentation will cover determining whether the health center or the business associate should make the breach-related HIPAA notifications, whether to notify the health center’s cybersecurity insurance carrier, and whether the health center should continue to contract with the business associate after a breach. The presentation will also include guidance on BAA provisions that can protect health centers should their business associate experience a breach. 

Target Audience

  • HIPAA Privacy Officers
  • HIPAA Security Officers
  • Compliance Officers
  • Health Center Directors
  • Medical records staff
  • Administrative and/or office staff

Learning Objectives

After this webinar, you will be able to:

  • Determine whether to accept a business associate’s offer to make breach-related HIPAA notifications
  • Evaluate whether to terminate a contract with a business associate after a breach
  • Update your health center’s BAA template with provisions that protect your health center should your business associate experience a breach
Course summary
Available credit: 
  • 1.00 Certificate of Attendance
Course opens: 
Course expires: 
Event starts: 
02/10/2022 - 1:00pm EST
Event ends: 
02/10/2022 - 2:00pm EST


As Partner and Compliance Counsel with the firm’s health law practice group, Dianne advises health centers on implementing effective compliance programs and on addressing top compliance risk areas. Dianne counsels health centers and other organizations on developing compliance programs that include the OIG’s seven elements, respond to identified compliance risk areas, and reflect the organization’s culture.  Dianne also advises health centers and other organizations on patient privacy and confidentiality, including the HIPAA Privacy Rule and 42 CFR Part 2.  She has experience responding to privacy and security incidents, including determining whether there has been a breach, notifying patients and the government, and creating corrective action plans. [Full Bio]

Participants can earn up to 1.20 CPE credits in Specialized Knowledge and Applications upon completion of all course requirements.


If you purchase CPE credit for this webinar you must satisfy the following conditions in order to receive your certificate:

  1. Answer at least 3 of the 5 polling questions during the webinar
  2. Complete the evaluation survey after the conclusion of the webinar or in the follow-up email

Upon completion of these requirements, FTLF will email you your CPE Certificate within seven (7) business days.


  • Prerequisites: None 
  • Target Audience: HIPAA Privacy Officers, HIPAA Security Officers, Compliance Officers, Health Center Directors, Medical records staff, Administrative and/or office staff
  • Advanced Preparation: None  
  • Program Level: All
  • Delivery Method: Group Internet Based
  • Attendance Requirements: In order to be awarded the full credits, you must respond to three (3) out of five (5) polling questions.

Feldesman Tucker Leifer Fidell LLP is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website (formerly

Available Credit

  • 1.00 Certificate of Attendance


Please login or register to take this course.

Access to the recorded version of this webinar is included in your purchase.


The recorded version of this webinar will be available within seven (7) business days after the conclusion of the live event. You will have access to the recording for 180 days after the live webinar has concluded. Once posted to your account, you can view this webinar anytime on-demand during the access period identified in the Recorded Webinar Now Available email. For additional information on viewing and accessing webinars, view our full terms and conditions here.


All registrations made the day of a live webinar must be completed using a credit card or PayPal. We do not accept check payments or purchase orders for live webinars on the day of the webinar. If you wish to pay by check, please register in enough time for your check to reach our office; we must receive your check before we grant access to the webinar. If we receive your check after the live webinar, we will grant you access to the recorded webinar. For the most current information, please visit our FAQ page.


For orders of live webinars, FTLF will issue a full refund for cancellations requested at least one week PRIOR to the live webinar. We do not provide refunds for no-shows; however, you may request access to the recorded version of the webinar. If you ordered the wrong webinar and need to transfer your registration to a different program, please Contact Us. View our full policy on refunds and cancellations on our FAQ page.

Required Hardware/Software

Google Chrome and Mozilla Firefox are the preferred browsers.