Security Rule Safeguards – Technical

Technical safeguards are meant to protect specifically ePHI and include:

  • Access Controls – Limiting access to a need to know basis
  • Audit Controls – Recording and examining system activity to eliminate unneeded access to PHI
  • Person or Entity Authentication – Using ID verification to govern PHI access
  • Transmission Security – Encrypting/protecting PHI in electronic transmission

Actionable Takeaway

  • Never send PHI, even to authorized parties, over an unsecured network or via an unsecured method