Creighton HIPAA Security Policies

 
Administrative Safeguards
 
Status Date
   Security Management         
    Risk Analysis Policy HIPAA Approved  4/3/05
    Risk Management Policy HIPAA Approved  4/3/05
    Sanction Policy HIPAA Approved  4/3/05
    Information Security Activity Review HIPAA Approved  4/3/05
   Workforce Security         
    Authorization / Supervision Policy HIPAA Approved  4/3/05
    Workforce Clearance Policy HIPAA Approved  4/3/05
    Termination Policy HIPAA Approved  4/3/05
   Information Access Management
    Access Authorization Policy HIPAA Approved  4/3/05
    Access Establishment Policy HIPAA Approved  4/3/05
   Security Awareness         
    Security Reminder Policy HIPAA Approved  4/3/05
    Malicious Software Policy HIPAA Approved  4/3/05
    Log-in Monitoring Policy HIPAA Approved  4/3/05
    Password Management Policy HIPAA Approved  4/3/05
   Security Incident         
    Response and Reporting Policy HIPAA Approved  4/3/05
   Contingency Plan         
    Data Backup Policy HIPAA Approved  4/3/05
    Disaster Recovery Policy HIPAA Approved  4/3/05
    Emergency Mode Operations Policy HIPAA Approved  4/3/05
    Testing and Revision Policy HIPAA Approved  4/3/05
   Evaluation         
    Evaluation Policy HIPAA Approved  4/3/05
   Business Associate         
    Business Associate Policy HIPAA Approved  4/3/05
 
Physical Safeguards
 
   Facility Access         
    Contingency Operations Policy HIPAA Approved  4/3/05
    Facility Security Policy HIPAA Approved  4/3/05
    Access Control Policy HIPAA Approved  4/3/05
    Maintenance Records Policy HIPAA Approved  4/3/05
   Workstation Use         
    Workstation Use Policy (Fair, Responsible, and Acceptable Use Policy) Approved  8/18/04
   Workstation Security         
    Workstation Security Policy HIPAA Approved  4/3/05
   Device and Media         
    Media Disposal and Re-use Policy HIPAA Approved  4/3/05
    Media Accountability Policy HIPAA Approved  4/3/05
    Data Backup and Storage Policy HIPAA Approved  4/3/05
 
Technical safeguards
 
   Access Controls         
    Unique User ID Policy HIPAA Approved  4/3/05
    Emergency Access Policy HIPAA Approved  4/3/05
    Automatic Logoff Policy HIPAA Approved  4/3/05
    Encryption Standard HIPAA Approved  4/3/05
   Audit Controls         
    Audit Policy HIPAA Approved  4/3/05
   Integrity Controls         
    Alteration/Destruction Policy HIPAA Approved  4/3/05
   Authentication         
    Person/Entity Authentication Policy HIPAA Approved  4/3/05
   Transmission Controls         
    Transmission Integrity Policy HIPAA Approved  4/3/05
    Transmission Encryption Standard HIPAA Approved  4/3/05
         
   Miscellaneous         
    Email Security Standard HIPAA Approved  4/3/05
    Network Security Standard HIPAA Approved  4/3/05

Plugged In highlights go here, news, initiatives, spotlight, designed to draw the user who is done finding or browsing, further into our content.