ACR–AAPM–SIIM PRACTICE PARAMETER FOR ELECTRONIC MEDICAL INFORMATION PRIVACY AND SECURITY

PREAMBLE

INTRODUCTION

II.

POLICY STATEMENTS

III.

PROCEDURES

Administrative Safeguards

III.

PROCEDURES

Physical Safeguards

III.

PROCEDURES

Technical Safeguards

IV.

SECURITY AND PRIVACY TOOLS USED

IV.

SECURITY AND PRIVACY TOOLS USED

Deidentification

IV.

SECURITY AND PRIVACY TOOLS USED

Authentication

IV.

SECURITY AND PRIVACY TOOLS USED

Authorization (access controls)

IV.

SECURITY AND PRIVACY TOOLS USED

Auditing (HIPAA, Other Requirements)

IV.

SECURITY AND PRIVACY TOOLS USED

Application Availability

IV.

SECURITY AND PRIVACY TOOLS USED

Confidentiality

IV.

SECURITY AND PRIVACY TOOLS USED

Data Availability

IV.

SECURITY AND PRIVACY TOOLS USED

Data Integrity

IV.

SECURITY AND PRIVACY TOOLS USED

Nonrepudation

IV.

SECURITY AND PRIVACY TOOLS USED

Use Cases

RESEARCH, EDUCATIONAL, AND MARKETING USES OF PATIENT DATA; INSTITUTIONAL REVIEW BOARD, AND PRIVACY REQUIREMENTS

VI.

MEDICAL-LEGAL CONSIDERATIONS

ACKNOWLEDGEMENTS

REFERENCES

Appendix A

Appendix B