The HIPAA Security Rule provisions on Audit Controls requires Covered Entities and Business Associates to implement hardware, software, and/or procedural mechanisms that record and examine activity in systems that contain or use electronic protected health information (45 C.F.R. § 164.312(b))
The 7 Elements of a Compliance Program Are as Follows:
1. Implementing written policies, procedures, and standards of conduct. 2. Designating a compliance officer and compliance committee.
3. Conducting effective training and education.
4. Developing effective lines of communication.
5. Conducting internal monitoring and auditing.
6. Enforcing standards through well-publicized disciplinary guidelines.
7. Responding promptly to detected offenses and undertaking corrective action.
Review the ONC Guide to the HiTech Act found.
Create a training/education powerpoint up to 3 to 5 slide for one of the seven elements listed that ensures organizational compliance with HIPAA.