1,735
edits
Third Party Registry: Difference between revisions
→Additional Information: updated Health Insurance Portability and Accountability Act of 1996 (HIPAA) link - 2x
Mhurlocker (talk | contribs) |
(→Additional Information: updated Health Insurance Portability and Accountability Act of 1996 (HIPAA) link - 2x) |
||
| Line 35: | Line 35: | ||
<big>'''Third Party Registry Selection Policy'''</big><br /><br /> | <big>'''Third Party Registry Selection Policy'''</big><br /><br /> | ||
==Basis for Policy == | ==Basis for Policy == | ||
Nebraska Medicine/UNMC implements reasonable and appropriate access controls in alignment with National Institute of Standards and Technology (NIST) standards and guidance to maintain the minimum necessary access. [https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final NIST Special Publication 800-53] and the [https://www.cdc.gov/phlp/ | Nebraska Medicine/UNMC implements reasonable and appropriate access controls in alignment with National Institute of Standards and Technology (NIST) standards and guidance to maintain the minimum necessary access. [https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final NIST Special Publication 800-53] and the [https://www.cdc.gov/phlp/php/resources/health-insurance-portability-and-accountability-act-of-1996-hipaa.html HIPAA Security Rule] outline considerations for the access control family of security controls. | ||
==Policy== | ==Policy== | ||
The following serve as the guiding principles to follow when selecting a third-party vendor: | The following serve as the guiding principles to follow when selecting a third-party vendor: | ||
| Line 110: | Line 110: | ||
*[https://info.unmc.edu/its-security/policies/procedures/thirdparty.html Third Party Registry Form] | *[https://info.unmc.edu/its-security/policies/procedures/thirdparty.html Third Party Registry Form] | ||
*[https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final NIST Special Publication 800-53] | *[https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final NIST Special Publication 800-53] | ||
*[https://www.cdc.gov/phlp/ | *[https://www.cdc.gov/phlp/php/resources/health-insurance-portability-and-accountability-act-of-1996-hipaa.html Health Insurance Portability and Accountability Act of 1996] (HIPAA) | ||
*[https://www.cdc.gov/phlp/ | *[https://www.cdc.gov/phlp/php/resources/health-insurance-portability-and-accountability-act-of-1996-hipaa.html HIPAA Security Rule] | ||
This page maintained by [mailto:dpanowic@unmc.edu dkp]. | This page maintained by [mailto:dpanowic@unmc.edu dkp]. | ||