| Bill Holtsnider, Brian D. Jaffe - Computers - 2010 - 632 pages
...Compliance and Controls on page 201). The final Security Rule of HIPAA requires covered entities to "conduct an accurate and thorough assessment of the...protected health information held by the covered entity." In addition, the rule states that the "required risk analysis is also a tool to allow flexibility for... | |
| Hossein Bidgoli - Business & Economics - 2006 - 1008 pages
...CFR §§164.308-164.314 and include the following: Administrative Safeguards Risk analysis. Conduct accurate and thorough assessment of the potential...confidentiality, integrity, and availability of electronic PHI held by the covered entity. Risk management. Implement security measures sufficient to reduce risks... | |
| Stephen S. Wu - Law - 2007 - 348 pages
...writing, which may be in electronic form.2' (a) Risk Analysis (Required)— Section 164.308(a)(1)(ii)(A) Conduct an accurate and thorough assessment of the...protected health information held by the covered entity. 20. Id. § 164.308(b)(1). 21. Id. §134.3 16(b)(1). At the heart of HIPAA compliance is an assessment... | |
| John A. Blackley, Thomas R. Peltier, Justin Peltier - Computers - 2004 - 280 pages
...Management Process Assigned Security Responsibility Workforce Security Workforce Security Workforce Security Conduct an accurate and thorough assessment of the...the confidentiality, integrity, and availability of Electronically Protected Health Information (EPHI). Implement security measures sufficient to reduce... | |
| |