Browse
Search
2016-698 Emergency Svc - North State Medical Transport - Application for Services Franchise by Ordinance
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2010's
>
2016
>
2016-698 Emergency Svc - North State Medical Transport - Application for Services Franchise by Ordinance
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
9/10/2019 9:26:00 AM
Creation date
12/15/2016 11:05:52 AM
Metadata
Fields
Template:
BOCC
Date
12/13/2016
Meeting Type
Regular Meeting
Document Type
Others
Agenda Item
6f
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
286
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Policy 28: Policy on Electronic Information System Activity Review and Auditing <br /> North State Medical Transport <br /> Policy on Electronic Information System Activity Review and Auditing <br /> Purpose <br /> The Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires North <br /> State Medical Transport to monitor and audit its electronic information system used to create, <br /> receive, maintain or transmit electronic protected health information ("e-PHI") so that quality <br /> assurance procedures will detect and address problems with the system. North State Medical <br /> Transport needs to identify the specific actions that have taken place such as timing and <br /> completion of back-up procedures, tracking server file access, and tracking power interruptions <br /> and other unusual events that could compromise our system and threaten the integrity of e- <br /> PHI. <br /> Scope <br /> This policy applies to all North State Medical Transport staff members who are <br /> responsible for monitoring and maintaining our electronic information system or are <br /> responsible for its security. The policy also applies to staff members assisting with the audit <br /> and review process. The HIPAA Compliance Officer shall have overall responsibility for <br /> monitoring, maintaining, and overseeing the security of our electronic information system and <br /> conducting audits. <br /> Procedure <br /> 1. The HIPAA Compliance Officer will develop procedures to document the creation, <br /> receipt, maintenance and transmission of e-PHI within the information system. <br /> 2. The HIPAA Compliance Officer will review the records of information system activities, <br /> including a review of audit logs, security incident tracking reports, back-up records, etc., <br /> as necessary. <br /> 3. Uses and disclosures need not be documented for purposes of an audit trail if the use is <br /> made entirely within the internal information system and the use did not involve any <br /> outside parties. <br /> 4. Disclosures that are required to be accounted for under HIPAA shall be recorded and <br /> tracked. Generally all non-patient authorized disclosures that are not related to <br /> treatment, payment and healthcare operations will be accounted for. An accounting of <br /> these disclosures must include: <br />
The URL can be used to link to this page
Your browser does not support the video tag.