HIPAA Administrative Safeguards Profile, v1.0

Profile of the requirements in the HIPAA Administrative Safeguards section (164.308) by collecting all the relevant TIPs and TDs.
Publication Date 2017-02-17
Issuing Organization
No Responder help@trustmarkinitiative.org 404-407-8956 75 5th Street NW, Suite 900, Atlanta, GA 30308
Keywords There are no keywords.
Legal Notice This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.
Loading...

Trust Expression:

TIP_HIPAASecurityManagementProcessProfile and TD_AssignedSecurityResponsibility and TIP_HIPAAWorkforceSecurityProfile and TIP_HIPAAInformationAccessManagementPoliciesProfile and TIP_HIPAAInformationAccessManagementProceduresProfile and TIP_HIPAASecurityAwarenessandTrainingProfile and TIP_HIPAASecurityIncidentPoliciesProfile and TIP_HIPAASecurityIncidentProceduresProfile and TIP_HIPAAContingencyPlanPolicies and TIP_HIPAAContingencyPlanProcedures and TIP_HIPAAPeriodicSecurityPolicyEvaluationProfile and TIP_HIPAAPeriodicSecurityProceduresEvaluationProfile

References (12)

 TIP  HIPAA Security Management Process Profile, v1.0
Description Profile of HIPAA Security Management requirements (per 45 CFR Section 164.308(a)(1)) for a covered entity or business associate to implement policies and procedures to prevent, detect, contain, and correct security violations.
ID TIP_HIPAASecurityManagementProcessProfile
 TIP  HIPAA Workforce Security Profile, v1.0
Description Profile of HIPAA Information Access Management (per 45 CFR Section 164.308(a)(3)) covered entity or business associate requirements to ensure members of its workforce have appropriate access and to prevent inappropriate access to electronic protected health information (e-PHI).
ID TIP_HIPAAWorkforceSecurityProfile
 TIP  HIPAA Information Access Management Policies Profile, v1.0
Description Profile of HIPAA Information Access Management (per 45 CFR Section 164.308(a)(4)) requirements for policies for authorizing access to e-PHI.
ID TIP_HIPAAInformationAccessManagementPoliciesProfile
 TIP  HIPAA Information Access Management Procedures Profile, v1.0
Description Profile of HIPAA Information Access Management (per 45 CFR Section 164.308(a)(4)) requirements for procedures for authorizing access to e-PHI.
ID TIP_HIPAAInformationAccessManagementProceduresProfile
 TIP  HIPAA Security Awareness and Training Profile, v1.0
Description Profile of HIPAA Security Awareness and Training (per 45 CFR Section 164.308(a)(5)) requirements for a covered entity or business associate to implement a security awareness and training program for all members of its workforce (including management).
ID TIP_HIPAASecurityAwarenessandTrainingProfile
 TIP  HIPAA Security Incident Policies Profile, v1.0
Description Profile of HIPAA Security Awareness and Training (per 45 CFR Section 164.308(a)(6)) requirements for a covered entity or business associate to implement policies to address security incidents.
ID TIP_HIPAASecurityIncidentPoliciesProfile
 TIP  HIPAA Security Incident Procedures Profile, v1.0
Description Profile of HIPAA Security Awareness and Training (per 45 CFR Section 164.308(a)(6)) requirements for a covered entity or business associate to implement procedures to address security incidents.
ID TIP_HIPAASecurityIncidentProceduresProfile
 TIP  HIPAA Contingency Plan Policies, v1.0
Description Profile of HIPAA Security Awareness and Training (per 45 CFR Section 164.308(a)(7)) requirements for a covered entity or business associate to establish policies for responding to an emergency or other occurrence (for example, fire, vandalism, system failure, and natural disaster) that damages systems that contain electronic protected health information.
ID TIP_HIPAAContingencyPlanPolicies
 TIP  HIPAA Contingency Plan Procedures, v1.0
Description Profile of HIPAA Security Awareness and Training (per 45 CFR Section 164.308(a)(7)) requirements for a covered entity or business associate to establish (and implement as needed) procedures for responding to an emergency or other occurrence (for example, fire, vandalism, system failure, and natural disaster) that damages systems that contain electronic protected health information.
ID TIP_HIPAAContingencyPlanProcedures
 TIP  HIPAA Periodic Security Policy Evaluation Profile, v1.0
Description Profile of HIPAA required periodic technical and non-technical policy evaluation, based initially upon the standards implemented under this rule and, subsequently, in response to environmental or operational changes affecting the security of electronic protected health information, per 45 CFR Section 164.308(a)(8).
ID TIP_HIPAAPeriodicSecurityPolicyEvaluationProfile
 TIP  HIPAA Periodic Security Procedures Evaluation Profile, v1.0
Description Profile of HIPAA required periodic technical and non-technical procedures evaluation, based initially upon the standards implemented under this rule and, subsequently, in response to environmental or operational changes affecting the security of electronic protected health information, per 45 CFR Section 164.308(a)(8).
ID TIP_HIPAAPeriodicSecurityProceduresEvaluationProfile
 TD  Assigned Security Responsibility, v1.0
Description Specifies that a health care related organization must identify the security official who is responsible for the development and implementation of the policies and procedures required by the Security Rule.
ID TD_AssignedSecurityResponsibility
Provider Reference
Also available as XML or JSON