According to Ms. Pass, the security risk analysis should include the implementation of three categories of electronic protected health information safeguards. The three categories are:
1. Administrative safeguards. These must state how the covered entity will conduct oversight and management of staff members who have access to and handle electronic protected health information.
2. Physical safeguards: These are the mechanisms required to protect electronic systems, equipment and the data they hold from environmental hazards and unauthorized intrusion.
3. Technical safeguards: These are the automated processes used to protect and control access to data.
More Articles on Practice Management:
United Healthcare Drops Thousands of Physicians From Medicare Advantage
9 Team-Building Exercises for Medical Practices
10 Pain Management Tips for Physicians From a Lawyer
