[ Wednesday, October 06, 2010 ]
Role-Based Access: This has been a HIPAA requirement from day one; only those with a need to know should have access to PHI. But implementation and fine-tuning of access management policies in light of HITECH has raised the profile of the issue. It's definitely a security issue, since many breaches are caused by employees or contractors who perhaps shouldn't have access to the data in the first place. Now there's a
white paper out the issue.
Jeff [9:49 AM]
http://www.blogger.com/template-edit.g?blogID=3380636
Blogger: HIPAA Blog - Edit your Template