ID Number: G00169191



Addressing HIPAA Security, Part 1: The Standards
23 September 2009
 
Paul E. Proctor   Barry Runyon   Wes Rishel  

Covered entities, business associates and other affected organizations must comply with the Health Insurance Portability and Accountability Act Security Rule. This rule has a great deal of built-in flexibility, so the key is to build a defensible position of compliance.




Price: US$495.00

Pages: 15






Document History


Browse Topics


Other Options







Contact Gartner





Purchasing this document is fast, easy and secure, but you must be registered with gartner.com so we can track your order. Please select your status from these three choices:
Registration is required to purchase this document.
Or, you can register for gartner.com only.
 You or your organization may already own this document. Register now to find out. Your Gartner Membership Administrator can supply the needed License Key(s).
You will not lose your document during registration.
Sign in here:
Username:

Password:
Forgot your username
or password?







For more information about purchasing this or other documents, contact Gartner at one of the telephone numbers below:
North America:    +1 203-316-3010 7:30 am - 8:00 pm Stamford, CT
Europe:    +44 1784 267770 9:00 am - 5:00 pm London
Asia/Pacific:    +65 6879 2785 9:00 am - 6:00 pm Singapore
Japan:    +81 3 3481 3552 9:00 am - 5:30 pm Tokyo

Table of Contents


    
 Analysis

1.0
    
 Background
2.0
    
 There Is No Privacy Without Security
3.0
    
 What Is Protected Health Information?
4.0
    
 Design Goals of Security Standards
5.0
    
 Standards and Implementation Specifications
6.0
    
 The Three Security Safeguard Categories

6.1
    
 Administrative Safeguards
6.2
    
 Physical Safeguards
6.3
    
 Technical Safeguards
7.0
    
 Breach Notification Requirements

7.1
    
 Breach Notification
8.0
    
 HIPAA Compliance Enforcement
9.0
    
 Good Security Is Good Business

    
 Recommended Reading


List of Figures


Figure 1. 
 Elements of the HIPAA Security Rule
 

Figure 2. 
 Administrative Safeguards
 

Figure 3. 
 Administrative Safeguards Standards (Continued)
 

Figure 4. 
 Physical Safeguards
 

Figure 5. 
 Technical Safeguards
 

Figure 6. 
 Policies and Procedures and Documentation
 



Document History:
 
Addressing HIPAA Security, Part 1: The Standards
23 September 2009
  
Addressing HIPAA Security, Part 1: The Standards
26 June 2007
  




Browse Topics:
 
Security Policies
Customer Security and Privacy
Regulatory Compliance
Computer-Based Patient Records
HIPAA Regulations
Compliance Management




© 2009 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner's research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.




Resource Id: 1187319