HIPAA is big. Sprawling and abstract, debatably. Overwhelming and misunderstood, likely.
Let’s boil down HIPAA for a moment into three concepts:
Now, let’s apply those concepts to the impetus behind HIPAA Security: protecting health information. Jump back to our ePHI primer.
How does the federal government want this information protected? Essentially, they want you to ensure:
- only the appropriate people can see it
- it remains accurate and unchanged
- it never becomes unavailable when needed
So what does this mean in practice? Well, depending upon the size of your operation it means you need to be considering tens or hundreds of accommodating policies and procedures.
More to come-