It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Some features of ATS will be disabled while you continue to use an ad-blocker.
originally posted by: Nikola014
Another useless thread from our very own Yeti...
I'm telling you man, you are on the wrong site. You should join reddit
According to the U.S. Department of Health and Human Services (HHS), the security rule was written to provide covered entities the flexibility to determine adequate security measures, and does not specify minimum requirements for operating systems. However, it does specify that systems containing sensitive patient information must ensure protection against data breaches, and institute procedures for guarding against, detecting and reporting malicious software.
HSS goes on to say it is the covered entity's responsibility to implement safeguards to record and examine access and other activity in systems containing or using e-PHI.