My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2005-030
CBCC
>
Official Documents
>
2000's
>
2005
>
2005-030
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/5/2016 2:27:35 PM
Creation date
9/30/2015 7:40:02 PM
Metadata
Fields
Template:
Official Documents
Official Document Type
Addendum
Approved Date
01/18/2005
Control Number
2005-030
Agenda Item Number
11.D.1
Entity Name
Blue Cross and Blue Shield of Florida
Symetra :Life Insurance Co.
Subject
HIPAA-AS Addendum to Agreement
Archived Roll/Disk#
4000
Supplemental fields
SmeadsoftID
3862
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
73
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Procedures to Safeguard PHI <br /> Physical Security. Physical security of PHI will be maintained through various <br /> means as follows : <br /> • PHI is to be maintained in separate file area of the office or enclosed room <br /> where access is limited to those County employees who have access <br /> according to the terms of the Privacy Policy. File cabinets should have <br /> locks . To the extent feasible, file cabinets should be kept locked . <br /> • If PHI is stored in a desk, the desk should have a lock . Desks containing <br /> PHI should be locked when unattended . PHI is not to be left unattended on <br /> desktops , countertops or worktables . <br /> • Departments that maintain PHI should ensure that visitors to the office are <br /> escorted to their .contact person and not left unattended . <br /> • Incoming mail should be delivered unopened to the person to whom it is <br /> addressed . <br /> • If an employee receives PHI and the employee is not designated as being <br /> permitted to have access to PHI, the employee should redirect .the PHI as <br /> soon as possible to an appropriate person who does have access to PHI . <br /> • Fax machines should be kept in an enclosed area or room to limit access to <br /> incoming communications that may contain PHI . Employees should <br /> exercise reasonable care to keep incoming fax messages secure and limit <br /> access by other County employees . <br /> • Address outgoing mail and fax communications only to the specific person <br /> at the organization who the organization has confirmed has access to PHI . <br /> Send PHI to a secure fax number verified by the intended receiver . Mark <br /> outgoing mail containing PHI "Personal & Confidential ." <br /> Verbal Security. <br /> • Employees shall take reasonable steps in verbally discussing PHI to ensure <br /> that PHI is not discussed with any employee , individual or third party who <br /> does not have access to PHI pursuant to the terms of the County ' s Privacy <br /> Policy. <br /> • PHI should not be discussed on speakerphone , unless necessary. If a <br /> speakerphone is used while discussing PHI, the door to the employee ' s <br /> office should be kept closed . <br /> • When discussing PHI by telephone, employees should take reasonable care <br /> that the party to whom they are speaking is permitted to have access to PHI . <br /> • Employees should not discuss PHI in public areas such as elevators and <br /> lunch rooms or at social gatherings . <br /> Supervisors should monitor physical and verbal security and access to PHI. <br /> Employees must report any violations of security to the Privacy Official as soon as <br /> possible . <br /> 37 _ <br />
The URL can be used to link to this page
Your browser does not support the video tag.