In general, your practice must:
- Ensure the confidentiality, integrity, and availability of all electronic protected health information it creates, transmits, receives
- Protect against any reasonably anticipated threats or hazards to that information, such as hackers, viruses, or loss of
- Employ the appropriate safeguards, such as employee guidelines and training, firewalls, anti-virus software, back-ups,
updated individual passwords, audit trails, and data encryption when transmitting protected health information.
Back to Ask the Expert