California Determines What Is Reasonable and Appropriate for Securing Health Information: HIPAA & HITECH Act Blog by Jonathan P. Tomes
HIPAA requires covered entities and business associates to implement reasonable and appropriate security measures in § 164.308(a)(1)(ii)(B), the risk management Administrative safeguards, but although it does .. read more
On March 10th, 2016,
posted in: HIPAA Compliance Blog by Jonathan Tomes Tags: breach, business associate, compliance, criminal HIPAA violation, data breach, EHR, emr, encryption, HHS, HIPAA, HIPAA civil money penalties, HIPAA compliance, HIPAA training, HIPAA violation, HITECH, HITECH Act, identity theft, Jonathan P. Tomes, mental and behavioral health, Notice of Privacy Practices, OCR, OCR investigation, PHI, privacy, Privacy Rule, reasonable and appropriate, risk analysis, Security Rule
