| Trustmark Definition Name | Version |
|---|---|
|
Defines conformance and assessment criteria for verifying that an organization revises its public notices to reflect changes in its activities that impact privacy, as soon as practicable after the change.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization revises its public notices to reflect changes in its activities that impact privacy, before the change.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization revises its public notices to reflect changes in practice or policy that affect PII as soon as practicable after the change.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization revises its public notices to reflect changes in practice or policy that affect PII before the change.
|
1.0 |
|
Specifies that a covered entity must have policies and procedures to designate a privacy official who is responsible for the development and implementation of the policies and procedures of the entity.
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies that a health care related organization must promptly document and implement a revised policy or procedure, and also promptly revise the privacy notice if there are material changes to it, whenever a change in the law necessitates a change in policies or procedures
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies that a health care related organization must change its policies and procedures as necessary and appropriate to comply with changes in the law with respect to the HIPAA Privacy Rule.
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies requirements and restrictions for health care related organizations on how to change the privacy practices in the privacy notice if revisions are necessary.
|
1.0 |
|
Specifies that a health care related organization must implement policies and procedures with respect to protected health information that are designed to comply with the standards, implementation specifications, or other requirements of the Privacy Rule.
|
1.0 |
|
Defines privacy requirements for organizations to document the key words or phrases that are regularly used in its privacy policy.
|
1.0 |
|
Defines privacy requirements for organizations to document a statement of purpose for establishing a privacy, civil rights, and civil liberties protection policy.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization ensures that its privacy practices are publicly available through organizational websites or otherwise.
|
1.0 |
|
Specifies that a covered entity must have policies and procedures to permit an individual to request that the covered entity restrict uses or disclosures of protected health information about the individual, and disclosures to a family member or other designated person.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization develops, disseminates, and updates reports to the Office of Management and Budget (OMB) and Congress as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization develops, disseminates, and updates reports to oversight bodies, as appropriate, to senior management and other personnel with responsibility for monitoring privacy program progress and compliance.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization develops, disseminates, and updates reports to oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes privacy roles, responsibilities, and access requirements for contractors and service providers.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization includes privacy requirements in contracts and other acquisition-related documents.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization designs information systems to support privacy by automating privacy controls.
|
1.0 |
|
Addresses the requirements for limiting the lifetime of private keys for PKI certificates used to sign code and content.
|
1.0 |
