The HIPAA Privacy Rule requires appropriate safeguards to be implemented to protect the privacy of Personal Health Information, and sets limits and conditions on the uses and disclosures of such information without patient authorization.
Do you know if your activities fit within the definition of a Covered
Entity or a Business Associate?
Do you realize there are State Privacy Rules that are more stringent?
Do you have Global activities?
Did you conduct a HIPAA and State Privacy Gap Analysis?
Are you struggling to define an appropriate Data Governance strategy?
Do you have adequate Safeguards in place?