Welcome to Scribd!

Skip carousel

HIPAA Overview: Controls Applicable To Our Organization

Uploaded by

Rupal Fadia

0% found this document useful (0 votes)

32 views10 pages

HIPAA core

Original Title

HIPAA 1 0

Copyright

Available Formats

PPTX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

HIPAA core

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

32 views10 pages

HIPAA Overview: Controls Applicable To Our Organization

Uploaded by

Rupal Fadia

HIPAA core

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 10

Search inside document

HIPAA Overview

Controls applicable to our organization

Index

# Contents Slide No.

1 Introduction 3

2 Security Vs Privacy 4
3 Administrative Safeguards 5
4 Physical Safeguards 6
5 Technical Safeguards 7
6 Incident Management 8
7 HITECH Amendment 9

Private & Confidential 2

Introduction

• HIPAA stands for Health Insurance Portability and Accountability Act, 1996

• HIPAA defines policies, procedures and guidelines for maintaining the privacy and
security of Health Information

• HIPAA outlines the following security rules:

o Administrative Safeguards
o Physical Safeguards
o Technical Safeguards

• Appropriate safeguards for handling privacy and PHI

Private & Confidential 3

Security Vs Privacy

• The word "security" should not be confused with "privacy.“

• Security is to protect the privacy of electronic patient information

• Information stored electronic media

• Information transmitted through electronic means

• Privacy covers the confidentiality of PHI in all formats. The physical

security of PHI in all formats is an element

Private & Confidential 4

Administrative Safeguards

• Designed to guard the confidentiality, integrity, and availability

• 7 sections to the required administrative procedures
• Assigned Security
• Contingency Plan
• Information Access Management
• Training & Awareness
• Security Management
• Workforce Security
• Security Incident Procedures

Private & Confidential 5

Physical Safeguards

• Steps for ensuring information on computers is secure

• Require log-ins
• Protect IDs and passwords - never share them
• Screensavers (recommended to be less than 5 minutes)
• Log off the computer before leaving it unattended
• Position computer monitors away from public areas to avoid observation
by visitors
• Hard drives are appropriately “cleansed” before de-commissioning or
transfer

Private & Confidential 6

Technical Safeguards

• Access Control
o Limit access.
o Unique user identification
o Emergency access procedure
o Automatic logoff
o Encryption and decryption

• Audit Controls
o Defines this requirement as implement of hardware, software, and/or procedural mechanism that record
and examine activity in information systems that contain or use.
o Appears that flexibility does not extend to having no audit trail mechanisms at all

• Integrity
o Policies and procedures to protect e-PHI from improper alteration or destruction

• Authentication and Transmission

o e-PHI is not improperly modified without detection until disposed off
o Mechanisms to encrypt e-PHI deemed appropriate

* e-PHI stands for Electronic PHI

Private & Confidential 7

Incident Management

• Any activity that harms the resources or can cause harm to the
Organization and / or:
o Unauthorized changes or access of PHI or ePHI
o Criminal activity or natural disaster

• Employees follow ‘in place’ Security Incident procedures and notify:

o The respective supervisor / manager
o The Compliancy Officer or designate
o The Information Security if PHI is involved

Private & Confidential 8

HITECH Amendment

• HITECH - Health Information Technology for Economical and Clinic Health Act

• HITECH act expands HIPAA Privacy and Security Rules further to the
Administrative, Physical and Technical Safeguards:
o Policies and Documentation
o New security breach reporting requirement
o Privacy Requirements
 Health Information Exchange Organizations and Regional Health
Information Organizations (HIEs and RHIOs)
 Criminal and Civil penalties: The act makes HIPAA’s criminal and civil
penalties applicable to business associates
o Security Breach reporting by covered entities (all associated individuals /
entities / organizations /

Private & Confidential 9

CALIBER POINT BUSINESS SOLUTIONS LTD.
Corporate Office:
Building No. 3, Sector II, Millennium Business Park, “A” Block, Mahape,

Thank you Navi Mumbai 400 710, INDIA

Phone : +91 22 2778 3300
Web : www.caliberpoint.com

Insider Threat Management A Complete Guide - 2020 Edition
From Everand
Insider Threat Management A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
Privacy Impact A Complete Guide - 2019 Edition
From Everand
Privacy Impact A Complete Guide - 2019 Edition
Gerardus Blokdyk
No ratings yet
Hipaa: Health Insurance Portability and Accountability Act
Document24 pages
Hipaa: Health Insurance Portability and Accountability Act
shanoo shah
No ratings yet
IT security policy questions
Document20 pages
IT security policy questions
writer top
No ratings yet
Health Information Matrix
Document9 pages
Health Information Matrix
Vanguardia Highway
No ratings yet
Security 101: Training, Awareness, and Strategies Stephen Cobb, CISSP Senior Security Researcher Eset Na
Document41 pages
Security 101: Training, Awareness, and Strategies Stephen Cobb, CISSP Senior Security Researcher Eset Na
Christen Castillo
No ratings yet
Data Security Review
Document60 pages
Data Security Review
Spit Fire
No ratings yet
Security Awareness Training
Document25 pages
Security Awareness Training
Daniel Idongesit
No ratings yet
Cyber Security
Document4 pages
Cyber Security
A
No ratings yet
2015 UW-Madison Cybersecurity Strategic Plan Final Jul-01-2015
Document47 pages
2015 UW-Madison Cybersecurity Strategic Plan Final Jul-01-2015
Hiba Afaneh
No ratings yet
HIPAA
Document69 pages
HIPAA
DucTri
No ratings yet
Authorizations Under HIPAA : C:/my Documents/authorizations
Document6 pages
Authorizations Under HIPAA : C:/my Documents/authorizations
pmuppirala
No ratings yet
SIIM Live Learning Center (Curriculum Module (Exam) )
Document11 pages
SIIM Live Learning Center (Curriculum Module (Exam) )
Al Al
No ratings yet
The Complete Guide to Data Security: Protect Sensitive Data at Rest, in Use and in Transit
Document22 pages
The Complete Guide to Data Security: Protect Sensitive Data at Rest, in Use and in Transit
Johan Prevot R
No ratings yet
Compliance Training FWA HIPAA Privacy and Security
Document59 pages
Compliance Training FWA HIPAA Privacy and Security
Meghan Pelehac
No ratings yet
OWASP Security Culture-1.0
Document26 pages
OWASP Security Culture-1.0
Luiz Henrique Custódio
No ratings yet
Health Insurance Portability and Accountability Act (HIPAA) of 1996
Document56 pages
Health Insurance Portability and Accountability Act (HIPAA) of 1996
TylerDesjarlais
No ratings yet
Rashal International LLC GDPR Compliance Extract (International)
Document5 pages
Rashal International LLC GDPR Compliance Extract (International)
Rashal International LLC
No ratings yet
3 Steps To Simplifying Audits Showing Compliance and Managing Enterprise Risk
Document2 pages
3 Steps To Simplifying Audits Showing Compliance and Managing Enterprise Risk
Naorem Sing
0% (1)
Data Center Physical Security Best Practices Checklist PDF
Document3 pages
Data Center Physical Security Best Practices Checklist PDF
aL Doom
No ratings yet
HIPAA Security Controls Mapping
Document449 pages
HIPAA Security Controls Mapping
EMMANUEL Olinga
No ratings yet
Internet Security Report - Q4
Document37 pages
Internet Security Report - Q4
ravin.jugdav678
No ratings yet
HIPAA Compliance Checklist
Document3 pages
HIPAA Compliance Checklist
Akram Alqadasi
No ratings yet
Octave PDF
Document51 pages
Octave PDF
Marcos Espinoza
No ratings yet
Cyber Security
Document64 pages
Cyber Security
Auntie Mimina
No ratings yet
2020 Salary Survey Report PDF
Document42 pages
2020 Salary Survey Report PDF
Matthew Burke
100% (1)
Nnaples m5 Privsecassessment
Document14 pages
Nnaples m5 Privsecassessment
api-523878990
No ratings yet
Feb 20 - Security Education Training and Awareness
Document39 pages
Feb 20 - Security Education Training and Awareness
Agostinho Manuel Duarte Seixas Novo
No ratings yet
HRIS Information Security
Document26 pages
HRIS Information Security
Jasminder Sahni
No ratings yet
Passing Unix Linux Audit With Power Broker
Document11 pages
Passing Unix Linux Audit With Power Broker
jngure
100% (2)
ZAPDROID
Document42 pages
ZAPDROID
Muthu Kumaaran
No ratings yet
INSA Cloud Computing 2012
Document20 pages
INSA Cloud Computing 2012
Bob Gourley
No ratings yet
Python
Document35 pages
Python
Ajay Golyan
No ratings yet
Health Insurance Portability and Accountability Act (Hipaa)
Document16 pages
Health Insurance Portability and Accountability Act (Hipaa)
manokek
No ratings yet
Hipaa Audit Checklist: General Information
Document4 pages
Hipaa Audit Checklist: General Information
Subrata Patra
No ratings yet
Security Awareness Training Features
Document6 pages
Security Awareness Training Features
razan essa
No ratings yet
Cyber Scape
Document1 page
Cyber Scape
mirza sharif
No ratings yet
Breach Notification Letter
Document2 pages
Breach Notification Letter
eppelmannr
100% (1)
Security For The Future
Document13 pages
Security For The Future
Parminder Rai
No ratings yet
FICAM Roadmap Implementation Guidance
Document220 pages
FICAM Roadmap Implementation Guidance
Peptum72
No ratings yet
Security Lap Manual
Document93 pages
Security Lap Manual
Dinesh Raja NDR
No ratings yet
Cse 2022
Document626 pages
Cse 2022
inky
No ratings yet
DPDP Act 2023
Document8 pages
DPDP Act 2023
amit_del83
No ratings yet
Ch4 - Data Protection and Privacy
Document22 pages
Ch4 - Data Protection and Privacy
Alhussain Darbi
No ratings yet
AWS HIPAA Compliance Whitepaper PDF
Document49 pages
AWS HIPAA Compliance Whitepaper PDF
Siva Krishna
No ratings yet
HIPAA Administrative Safeguards
Document29 pages
HIPAA Administrative Safeguards
gaiallc
No ratings yet
The ROI of Data Loss Prevention: A Websense White Paper
Document16 pages
The ROI of Data Loss Prevention: A Websense White Paper
Adoliu Alexandru
No ratings yet
Data Loss Prevention Five Pillars Ebook
Document9 pages
Data Loss Prevention Five Pillars Ebook
adminak
No ratings yet
Hip A A Privacy Security
Document7 pages
Hip A A Privacy Security
raysofsunshine31
No ratings yet
Identity and Access Management
Document5 pages
Identity and Access Management
Kirti Poddar
No ratings yet
Microsoft V Motorola ITC '054 Patent Claim Chart
Document92 pages
Microsoft V Motorola ITC '054 Patent Claim Chart
Florian Mueller
No ratings yet
Risks Due To Convergence of Physical Security Systems
Document5 pages
Risks Due To Convergence of Physical Security Systems
Muhammad Dawood Abu Anas
No ratings yet
PSNC Model DPIA
Document8 pages
PSNC Model DPIA
martin_vk
No ratings yet
How to detect and avoid phishing scams
Document1 page
How to detect and avoid phishing scams
Ronna Mae Redubla
No ratings yet
HIPAA Primer For Nonprofit Social Services Agencies: September 2013
Document54 pages
HIPAA Primer For Nonprofit Social Services Agencies: September 2013
slusaf
No ratings yet
Tripwire CCM Policies and Platform Support 2015Q4 Datasheet
Document12 pages
Tripwire CCM Policies and Platform Support 2015Q4 Datasheet
Steve Bunde
No ratings yet
Rite Aid Store Closure List
Document89 pages
Rite Aid Store Closure List
thedmsticks
100% (1)
Biometrics in Banking Security A Case Study
Document17 pages
Biometrics in Banking Security A Case Study
Anonymous tZJktxmHS
No ratings yet
AB103413 - Ch12 Privacy and Security
Document71 pages
AB103413 - Ch12 Privacy and Security
Anonymous mwW3vRT0r
No ratings yet
HIPAA Privacy and Security Rules
Document83 pages
HIPAA Privacy and Security Rules
semarmendemx
No ratings yet
HIPAA - An Introduction: Ver X.X
Document30 pages
HIPAA - An Introduction: Ver X.X
Rupal Fadia
No ratings yet
EAC Codes
Document2 pages
EAC Codes
Rupal Fadia
100% (1)
Complying With HITECH Requirements: What Is The HITECH Act?
Document3 pages
Complying With HITECH Requirements: What Is The HITECH Act?
Rupal Fadia
No ratings yet
Csqa Cbok V6-2
Document551 pages
Csqa Cbok V6-2
nandagopal.bharadwaj4011
100% (10)
Chapter 9. The Role of Quality Assurance in Lean-Agile Software Development
Document10 pages
Chapter 9. The Role of Quality Assurance in Lean-Agile Software Development
Rupal Fadia
No ratings yet
BSR Energy Management Handbook
Document50 pages
BSR Energy Management Handbook
Yurdun Orbak
No ratings yet
Metal-Elements Side Effects
Document4 pages
Metal-Elements Side Effects
Rupal Fadia
No ratings yet
Factsheet Workplaceevergencies
Document2 pages
Factsheet Workplaceevergencies
Rupal Fadia
No ratings yet
Construction
Document184 pages
Construction
Mohd Yazid Mohamad Yunus
No ratings yet
A Review On Lean Manufacturing Implementation Techniques A Conceptual Model of Lean Manufacturing Dimensions
Document12 pages
A Review On Lean Manufacturing Implementation Techniques A Conceptual Model of Lean Manufacturing Dimensions
faizan
No ratings yet
Preliminary Cost Estimate For Product Cost Collector
Document2 pages
Preliminary Cost Estimate For Product Cost Collector
Balanathan Virupasan
No ratings yet
Contract Risk Assessment
Document39 pages
Contract Risk Assessment
arkirthi1175
No ratings yet
Fintech in The Banking System of Russia Problems A
Document13 pages
Fintech in The Banking System of Russia Problems A
my Vinay
No ratings yet
Chapter 7 Test Quiz
Document9 pages
Chapter 7 Test Quiz
Donna
No ratings yet
A New Model For Assessment Fast Food Customer Behavior Case Study: An Iranian Fast-Food Restaurant
Document14 pages
A New Model For Assessment Fast Food Customer Behavior Case Study: An Iranian Fast-Food Restaurant
bonavy olingou
No ratings yet
Summary (Commercial and Non Commercial Entities in Indonesia)
Document3 pages
Summary (Commercial and Non Commercial Entities in Indonesia)
savira ramadhanty
No ratings yet
Towards global Innovation Management Principles
Document42 pages
Towards global Innovation Management Principles
Jg Zhou
No ratings yet
COMPANY PROFILE
Document6 pages
COMPANY PROFILE
Hortencia Rodriguez
No ratings yet
Statement PDF
Document7 pages
Statement PDF
GovardhanGurram
No ratings yet
Industrial Organization Markets and Strategies 2Nd Edition Belleflamme Solutions Manual Full Chapter PDF
Document55 pages
Industrial Organization Markets and Strategies 2Nd Edition Belleflamme Solutions Manual Full Chapter PDF
nhatmaiqfanmk
100% (8)
Complete Internship - Report HIRA
Document52 pages
Complete Internship - Report HIRA
Hafsa Amin
No ratings yet
2 Why Nations Trade
Document17 pages
2 Why Nations Trade
Juliana Tovar saavedra
No ratings yet
94% Process Audit Checklist
Document2 pages
94% Process Audit Checklist
Ashutosh Singh
100% (2)
Thesis BMW
Document7 pages
Thesis BMW
afbwrszxd
100% (2)
Njau - Challenges Facing Human Resource Management Function at Kenyatta National Hospital
Document64 pages
Njau - Challenges Facing Human Resource Management Function at Kenyatta National Hospital
Adrah
No ratings yet
Corporate Identity - Wikipe..
Document6 pages
Corporate Identity - Wikipe..
maxsingh2012
100% (1)
BIM For Civil and Structural Engineers: Tom Bartley, Senior Engineer, WSP
Document15 pages
BIM For Civil and Structural Engineers: Tom Bartley, Senior Engineer, WSP
Martin
No ratings yet
CS Form No. 212 Attachment Work Experience Sheet
Document2 pages
CS Form No. 212 Attachment Work Experience Sheet
Limar Anasco Escaso
100% (1)
Forex Good PDF
Document80 pages
Forex Good PDF
sudheerarya
No ratings yet
Sap Tables
Document5 pages
Sap Tables
mighty_sum
No ratings yet
Agbo Emmanuel Obande
Document3 pages
Agbo Emmanuel Obande
Obande Agbo
No ratings yet
Agricultural Implements - Sargodha
Document10 pages
Agricultural Implements - Sargodha
Adnan Ashraf
No ratings yet
Quality of Work Life Report
Document15 pages
Quality of Work Life Report
Ruchi Kapoor
No ratings yet
Advanced Cost & Management
Document3 pages
Advanced Cost & Management
sajid
No ratings yet
Environmental and Occupational Health & Safety
Document14 pages
Environmental and Occupational Health & Safety
SarangKamble
No ratings yet
4 Financial Management ND2020
Document4 pages
4 Financial Management ND2020
Srikrishna Dhar
No ratings yet
EC Port Labour Study Vol I 18 1 13 Def
Document328 pages
EC Port Labour Study Vol I 18 1 13 Def
Jose Antonio Guerra
No ratings yet
Discuss and Identify The Key Affecting The Sales Organization and Sales Managers Today
Document8 pages
Discuss and Identify The Key Affecting The Sales Organization and Sales Managers Today
Has Liza
No ratings yet