MBMC’s HIPAA Compliance Statement

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) includes provisions designed to increase the privacy and security of healthcare information. Title II of HIPAA contains three primary administrative simplification mandates -- privacy, security, and electronic data interchange (EDI). MBMC has addressed the compliance requirements for each of these administrative simplification provisions.

Compliance with HIPAA Privacy Standards

The HIPAA Privacy Standards enforce the protection of an individual's identifiable health information. MBMC has put into place policies and procedures to ensure that the use and disclosure of healthcare information is handled appropriately. This includes establishing physical and electronic safeguards, working closely with business associates and subcontractors to ensure their compliance with the Privacy Standards, and privacy compliance training for all MBA employees.

Compliance with HIPAA Electronic Data Interchange (EDI) Transaction Standards

The HIPAA EDI Transaction Standards address the electronic transmission of healthcare data and establish standards related to code sets for data elements that are widely used in the healthcare industry. MBMC has made the necessary system programming changes to accommodate electronic transactions that are required for compliance with the EDI Transaction Standards.

Compliance with HIPAA Security Standards

The HIPAA Security Standards establish standards for safeguarding electronic transactions and ensuring the integrity and confidentiality of health information. We have enhanced our security system and continuously monitor all systems that support transaction processing.

MBMC views HIPAA compliance as an ongoing responsibility. We will continue to follow guidance related to the HIPAA regulations and will make adjustments to our compliance efforts when appropriate.