If you or your organization uses, stores and/or exchanges protected health information (PHI), you are considered a “covered entity” as defined by Texas Medical Records Privacy Act and would benefit from certification.
Texas law defines a covered entity as anyone who:
(A) for commercial, financial or professional gain, monetary fees or dues, or on a cooperative, nonprofit or pro bono basis, engages, in whole or in part, and with real or constructive knowledge, in the practice of assembling, collecting, analyzing, using, evaluating, storing or transmitting PHI. The term includes a business associate, health care payer, governmental unit, information or computer management entity, school, health researcher, health care facility, clinic, health care provider or person who maintains an Internet site;
(B) comes into possession of PHI;
(C) obtains or stores PHI under this chapter; or
(D) is an employee, agent or contractor of a person described in (A), (B) or (C) insofar as they create, receive, obtain, maintain, use or transmit PHI.