Global Navigation
HIPAA (Health Insurance Portability and Accountability Act) Definitions
1. HIPAA (Health Insurance Portability and Accountability Act):
A set of standards for the security of electronic protected health information that by health plans, health care clearinghouses, and certain health care providers must implement.
2. PHI (Protected Health Information):
Any information (such as a name,address, photo, etc.) that identifies real people in a health care setting.
3. Access Control:
The act of limiting a user's access to certain data or files based on role or job function.
4. Account Creation:
This is the process of creating an account (or some other
access point) on a computer system and granting it permission to access or
use some subset of files or data. Security policies developed by the
organization should govern this process. The policies should not only address
the creation of the account, but should also address how long the account
exists and describe the conditions in which the organization terminates the
accoun.
5. Data "Browsing":
The act of viewing data or records not directly within the scope of one's job functions at the time. For example, a health care provider looking at records of patients not under that provider's care. 6. Access Level: The "rights" a user account has concerning access to a file or data. These will vary among operating systems, but usually include: read (the ability to look at a file or its contents), write (the ability to create a file or modify an existing file's contents), and delete (the ability to erase a file).