Templates
Corporate Social Responsibility
HIPAA Compliance Checklist
HIPAA Compliance Checklist

HIPAA Compliance Checklist

Run this checklist to determine how compliant your institution is with HIPAA provisions
1
Introduction:
2
Technical safeguards:
3
Implement a means of access control (R)
4
Introduce activity logs and audit controls (R)
5
Introduce a mechanism to authenticate ePHI (A)
6
Implement tools for encryption and decryption (A)
7
Facilitate automatic log-offs of PCs and devices (A)
8
Verify technical safeguards are in place
9
Physical safeguards:
10
Implement policies for the use/positioning of workstations (R)
11
Implement policies and procedures for mobile devices (R)
12
Implement facility access controls (A)
13
Establish and maintain an inventory of hardware (A)
14
Verify physical safeguards are in place
15
Administrative safeguards:
16
Conduct ePHI risk assessments (R)
17
Introduce a risk management policy (R)
18
Restrict third-party access to ePHI (R)
19
Develop a contingency plan (R)
20
Test the contingency plan periodically (A)
21
Formally train employees to be secure (A)
22
Develop a formal procedure to report security incidents (A)
23
Verify administrative safeguards are in place
24
Final step:
25
Approval: Confirm standards for all three safeguards are being met
26
Sources:
27
Related checklists: