Device and Media Controls - Part 2

Episode 62: Know The Rules! Device and Media Controls – Part 2

Device and Media Controls – Part 2 In this week’s “Know The Rules!,” I am talking about the last two HIPAA Device and Media Controls security standard, 45 CFR §164.310(d)(1). The Device and Media Controls standard requires Covered Entities (CEs) and their Business Associates (BAs) to: Implement policies and procedures that govern the receipt and […]

Device and Media Controls - Part 1

Episode 61: Know The Rules! Device and Media Controls – Part 1

Device and Media Controls In this week’s “Know The Rules!,” I am talking about the first two elements of the HIPAA Device and Media Controls security standard, 45 CFR §164.310(d)(1). The Device and Media Controls standard requires Covered Entities (CEs) and their Business Associates (BAs) to: Implement policies and procedures that govern the receipt and […]

Minimum Necessary

Episode 60: Know The Rules! Minimum Necessary

HIPAA Privacy Rule Minimum Necessary In this week’s “Know The Rules!,” I am discussing the Privacy Rule minimum necessary standard, [45 CFR 164.502(b), 164.514(d)]. Minimum necessary applies: When using or disclosing protected health information (PHI) or when requesting PHI from another Covered Entity (CE) or Business Associate (BA), a CE or BA must make reasonable […]