Basic HIPAA Privacy Rule Assessment
*
Email
*
Company Website
Company Name
*
First Name
*
Last Name
*
Title
Our policies and procedures cover the standards, requirements, addressables, and enforces HIPAA implementation specifications regarding documentation
Yes
No
Maybe
Unsure
All business associates have the required contractual agreement that includes the appropriate assurances.
Yes
No
Maybe
Unsure
Your Notice of Privacy Practices (NPP) adheres to the strict requirements of the Privacy Rule and is posted on your website, provided electronically as necessary.
Yes
No
Maybe
Unsure
Your Notice of Privacy Practices (NPP) contains the name, or title and telephone number of a person or office to contact for further information required by the Privacy Rule.
Yes
No
Maybe
Unsure
Your Notice of Privacy Practices (NPP) contains the date on which the notice is first in effect and, if modified, is documented for the required six years.
Yes
No
Maybe
Unsure
Our organization has processes that enable the access rights of individuals.
Yes
No
Maybe
Unsure
Our designated Privacy Officer is responsible for implementing, training, and ensuring our organization is in compliance with the Privacy Rule's standards and implementation specifications..
Yes
No
Maybe
Unsure
Our workforce is given training within 90 days of hire, periodically, and when changes have been made in our organization.
Yes
No
Maybe
Unsure
Training has been documented as required.
Yes
No
Maybe
Unsure
Our organization has the appropriate administrative, physical, and technical safeguards in place to protect PHI.
Yes
No
Maybe
Unsure
Our organization has appropriate sanctions when workforce members fail to comply with the privacy policies and procedures.
Yes
No
Maybe
Unsure
Our applied sanctions have been documented.
Yes
No
Maybe
Unsure
Our organization mitigates, to the extent practicable, any harmful effect that is known to be in violation of its policies and procedures or the requirements in the Privacy Rule.
Yes
No
Maybe
Unsure
Our organization maintains documentation sufficient to meet our burden of proof and for the retention period as required by the Privacy Rule.
Yes
No
Maybe
Unsure
Submit
Save Draft