Health Insurance Portability and Accountability Act (HIPAA)

Step 1. Choose your HIPAA Assessment

The HIPAA Privacy regulations require health care providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared. The HIPAA Security Rule requires health care providers, health plans and business associates to conduct risk analyses and implement technical, physical and administrative safeguards for ePHI.

The Administrative Simplification provisions require the U.S. Department of Health & Human Services (HHS) to adopt national standards for electronic health care transactions and code sets, unique health identifiers, and security.

HIPAA Administrative Safeguards Assessment

HIPAA Assessment to manage security measures to protect ePHI.

HIPAA Physical Safeguards Assessment

HIPAA Physical measures to protect the information systems and buildings.

HIPAA Technical Safeguards Assessment

HIPAA technology, policy and procedures to protect ePHI and control access.

These risk assessment guides were developed by the Office of the National Coordinator for Health IT (ONC) in conjunction with the HHS Office for Civil Rights (OCR).

Step 2. Edit / Answer / Share the Assessment

Disclaimer: the assessments are provided by Vendict “as is” for information purposes only. Any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. While we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the inserted assessment contained herein. Any reliance you place on such information is therefore strictly at your own risk.