Regulatory
OSHA
Occupational Safety and Health Administration. Federal agency that sets and enforces workplace safety standards. Healthcare facilities must comply with OSHA standards for bloodborne pathogens, hazard communication, and more.
Definition
Occupational Safety and Health Administration. Federal agency that sets and enforces workplace safety standards. Healthcare facilities must comply with OSHA standards for bloodborne pathogens, hazard communication, and more.
What This Means for Your Facility
OSHA's authority derives from the Occupational Safety and Health Act of 1970, which grants the agency power to set workplace safety standards, conduct inspections, and issue citations with monetary penalties. For healthcare facilities, the most commonly applicable standards include: Bloodborne Pathogens (29 CFR 1910.1030), Hazard Communication (29 CFR 1910.1200), Personal Protective Equipment (29 CFR 1910.132-138), Respiratory Protection (29 CFR 1910.134), Recordkeeping (29 CFR Part 1904), and the General Duty Clause (Section 5(a)(1)), which requires employers to maintain a workplace free from recognized hazards.
In California, federal OSHA standards are enforced by Cal/OSHA under the state's approved State Plan. This means California healthcare facilities face both the federal standards and additional state requirements, Cal/OSHA's ATD standard, the IIPP requirement, workplace violence prevention, and stricter penalty structures. OSHA penalties were last adjusted in January 2026: serious violations now carry penalties up to $16,550 per instance, willful and repeat violations up to $165,514, and failure-to-abate penalties of $16,550 per day.
BayArea Compliance's OSHA|360 program covers the full scope of federal OSHA and Cal/OSHA requirements for healthcare facilities. Rather than reacting to citations after an inspection, the program maintains continuous compliance, current training records, up-to-date written programs, properly managed chemical inventories, and regular facility assessments. The result is a facility that is always inspection-ready.
Related BAC Services
OSHA Compliance (OSHA|360)
Bloodborne pathogen training, mock inspections, written safety plans, and ongoing Cal/OSHA compliance support. Part of the COMPLIANCE|360 bundle.
Learn moreCompliance Training
Annual OSHA, HIPAA, bloodborne pathogen, and DOT hazmat training with certification tracking through your NETZERO|360 dashboard. CPR/First Aid classes also available.
Learn moreRelated Terms
Aerosol Transmissible Diseases (ATD)
Diseases that can be transmitted through airborne particles. Cal/OSHA's ATD standard (Title 8, Section 5199) requires healthcare facilities to implement exposure control plans, employee training, and respiratory protection programs.
Bloodborne Pathogens
Infectious microorganisms present in human blood that can cause disease. Includes hepatitis B (HBV), hepatitis C (HCV), and human immunodeficiency virus (HIV). OSHA requires annual BBP training.
Breach Notification
The process of notifying affected individuals, HHS, and potentially the media when unsecured protected health information (PHI) is accessed, used, or disclosed in a way not permitted by HIPAA. California's CMIA requires notification within 15 business days.
Cal/OSHA
California's Division of Occupational Safety and Health. Enforces workplace safety standards that are often stricter than federal OSHA, including the Aerosol Transmissible Diseases standard and specific requirements for healthcare, laboratory, and agricultural workplaces.
CMIA (California Confidentiality of Medical Information Act)
California state law (Civil Code §56–56.37) that provides stronger patient privacy protections than federal HIPAA. Includes a private right of action for patients, broader definitions of medical information, and shorter breach notification timelines.
Covered Entity
Under HIPAA, any health plan, healthcare clearinghouse, or healthcare provider that transmits health information electronically. All covered entities must comply with HIPAA Privacy, Security, and Breach Notification Rules.
Ready to Simplify Your Compliance?
One vendor for waste disposal, training, and regulatory compliance across the Bay Area, led by the 2025 NRC Recycler of the Year. Get a free assessment today.