|
All A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Regenstrief Institute
A research foundation for improving health care by optimizing the capture, analysis, content, and delivery of health care information. Regenstrief maintains the LOINC coding system that is being considered for use as part of the HIPAA claim
attachments standard.
|
Required By Law
A mandate contained in law that compels a covered entity to make a use or disclosure of protected health information and that is enforceable in a court of law. Required by law includes, but is not limited to, court orders and court- ordered warrants; subpoenas or summons issued by a court, grand jury, a governmental or tribal inspector general, or an administrative body authorized to require the production of information; a civil or an authorized investigative demand; Medicare conditions of participation with respect to health care providers participating in the program; and statutes or regulations that require the production of information, including statutes or regulations that require such information if payment is sought under a government program providing public benefits.
|
Research
In the course of conducting research, researchers may obtain, create, use, and/or disclose individually identifiable health information. Under the Privacy Rule, covered entities are permitted to use and disclose protected health information for research with individual authorization, or without individual authorization under limited circumstances set forth in the Privacy Rule.
Research Use/Disclosure Without Authorization.
To use or disclose protected health information without authorization by the research participant, a covered entity must obtain one of the following:
- Documented Institutional Review Board (IRB) or Privacy Board Approval
- Preparatory to Research
- Research on Protected Health Information of Decedents
- Limited Data Sets with a Data Use Agreement
- Research Use/Disclosure With Individual Authorization
- Accounting for Research Disclosures
- Transition Provisions
|
Risk Analysis
A process whereby cost-effective security/control measures may be selected by balancing the costs of various security/control measures against the losses that would be expected if these measures were not in place.
|
Risk Assessment
Commonly accepted as the process of defining deficiencies or "gaps" in your current security program.
Related Terms: GAP Analysis
|
Risk Management
The process of assessing risk, taking steps to reduce the risk to an acceptable level and maintaining that level of risk.
|
|
|
