Administrative Safeguards

HIPAA - Access Authorization 164.308(a)(4)(ii)(B)

Wed, Sep 28, 2022 0 0 586 0/5 (0 Vote)

Overview:Implement policies and procedures for granting access to electronic protected health information, for example, through access to a workstation, transaction, program, process, or other mechanism. Action Items:1) Obtain and review policies and... Read More

HIPAA - Access Establishment and Modification 164.308(a)(4)(ii)(C)

Wed, Sep 28, 2022 0 0 458 0/5 (0 Vote)

Overview:Implement policies and procedures that, based upon the covered entity’s or the business associate’s access authorization policies, establish, document, review, and modify a user’s right of access to a workstation,... Read More

HIPAA - Applications and Data Criticality Analysis 164.308(a)(7)(ii)(E)

Wed, Sep 28, 2022 0 0 423 0/5 (0 Vote)

Overview:Assess the relative criticality of specific applications and data in support of other contingency plan components. Action Items:1) Obtain and review policies and procedures related to identifying critical aplications and data. Evaluate and... Read More

HIPAA - Assigned Security Responsibility 164.308(a)(2)

Wed, Sep 28, 2022 0 0 351 0/5 (0 Vote)

Overview:Identify the security official who is responsible for the development and implementation of the policies and procedures required by this subpart for the covered entity or business associate. Action Items:1) Obtain and review documentation of... Read More

HIPAA - Authorization and/or Supervision 164.308(a)(3)(ii)(A)

Wed, Sep 28, 2022 0 0 450 0/5 (0 Vote)

Overview:Implement procedures for the authorization and/or supervision of workforce members who work with electronic protected health information or in locations where it might be accessed. Action Items:1) Obtain and review policies and procedures... Read More

HIPAA - Business Associate Contracts and Other Arrangements 164.308(b)(1)

Wed, Sep 28, 2022 0 0 338 0/5 (0 Vote)

Overview:(1) A covered entity, in accordance with § 164.306, may permit a business associate to create, receive, maintain, or transmit electronic protected health information on the covered entity's behalf only if the covered entity obtains... Read More

HIPAA - Contingency Plan 164.308(a)(7)(i)

Wed, Sep 28, 2022 0 0 409 0/5 (0 Vote)

Overview:Establish (and implement as needed) policies and procedures for responding to an emergency or other occurrence (for example, fire, vandalism, system failure, and natural disaster) that damages systems that contain electronic protected health... Read More

HIPAA - Data Backup Plan 164.308(a)(7)(ii)(A)

Wed, Sep 28, 2022 0 0 456 0/5 (0 Vote)

Overview:Establish and implement procedures to create and maintain retrievable exact copies of electronic protected health information. Action Items:1) Obtain and review policies and procedures related to data back-up plans. Evaluate and determine... Read More

HIPAA - Disaster Recovery Plan 164.308(a)(7)(ii)(B)

Wed, Sep 28, 2022 0 0 393 0/5 (0 Vote)

Overview:Establish (and implement as needed) procedures to restore loss of data. Action Items:1) Obtain and review documentation related to a disaster recovery plan. Review and determine if appropriate procedures for restoring any loss of data has... Read More

HIPAA - Emergency Mode Operation Plan 164.308(a)(7)(ii)(C)

Wed, Sep 28, 2022 0 0 406 0/5 (0 Vote)

Overview:Establish (and implement as needed) procedures to enable continuation of critical business processes for protection of the security of electronic protected health information while operation in emergency mode. Action Items:1) Obtain and... Read More

Results 1 - 10 of 30