1,707
edits
Line 175: | Line 175: | ||
#Develop periodic audit process to validate that only those with a need to know are accessing ePHI (See UNMC Policy No. 6057, [[Protected Health Information (PHI)|Use and Disclosure of Protected Health Information]]). | #Develop periodic audit process to validate that only those with a need to know are accessing ePHI (See UNMC Policy No. 6057, [[Protected Health Information (PHI)|Use and Disclosure of Protected Health Information]]). | ||
#Develop and implement a formal process for audit log review | #Develop and implement a formal process for audit log review | ||
#Audit reports are confidential and should not be released without the approval of the HIPAA [mailto: | #Audit reports are confidential and should not be released without the approval of the HIPAA [mailto:tscrogin@unmc.edu Privacy Officer] or the Human Resources Employee Relations Manager. | ||
====Shared Files==== | ====Shared Files==== | ||
The owner of shared files is responsible to: | The owner of shared files is responsible to: |