HIPAA Audit Controls Policy Template
HIPAA Audit Controls Policy Template
Implementing a HIPAA Audit Controls Policy Template is essential for businesses of all sizes to stay compliant to the robust rules set by the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This policy template allows your business to effectively record, examine and report activities associated with information technology systems that contain or use ePHI.
Empower your business by protecting its digital files from unauthorized access, use, disclosure, modification or destruction. From security incidents to audit logs to reviews of records and policies, this template provides an alarm system against potential data breaches so you can rest assured your digital assets are safeguarded.
SAMPLE TEXT: ENTITY NAME has adopted this Audit Controls Policy in order to recognize the requirement to comply with the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health (“HITECH”) Act of 2009 (Title XIII of division A and Title IV of division B of the American Recovery and Reinvestment Act “ARRA”) and the HIPAA Omnibus Final Rule (Effective Date: March 26, 2013). We acknowledge that full compliance with the HIPAA Final Rule is required by or before September 23, 2013.
ENTITY NAME hereby acknowledges our duty and responsibility to protect the privacy and security of Individually Identifiable Health Information (“IIHI”) generally, and Protected Health Information (“PHI”) as defined in the HIPAA Regulations, under the regulations implementing HIPAA, other federal and state laws protecting the confidentiality of personal information, and under principles of general and professional ethics. We also acknowledge our duty and responsibility to support and facilitate the timely and unimpeded flow of health information for lawful and appropriate purposes.
Each of our HIPAA templates are in Microsoft Word (.docx) format for easy editing. Each template is guaranteed to be fully HIPAA & HITECH compliant when properly implemented.