HIPAA Section B – HIPAA Technical Safeguards § 164.312
These safeguards apply directly to remote access products.
Note: Some items are marked as addressable. Under the terms of HIPAA, the term addressable is somewhat ambiguous, but it essentially means that the covered entity is allowed some flexibility in taking “reasonable” steps to comply with the standard or specification referred to.
Access Control | 164.312(a)(1) | Unique User Identification (Required) Emergency Access Procedure (Required) Automatic Logoff (Addressable) Encryption and Decryption (Addressable) |
Audit Controls | 164.312(b) | (Required) |
Integrity | 164.312(c)(1) | Mechanism to Authenticate Electronic Protected Health Information (Addressable) |
Person or Entity Authentication | 164.312(d) | (Required) |
Transmission Security | 164.312(e)(1) | Integrity Controls (Addressable) Encryption (Addressable) |
Parent article:
HIPAA Considerations - Introduction
Previous article:
HIPAA Section A – Background information on HIPAA Rules
Next article:
HIPAA Section C – Access Control § 164.312(a)(1)