Security Guidelines
Security of Your Health Information
Community Health Plan secures and maintains its equipment, software, and building resources to protect protected health information (PHI). The policies that govern how we do this are available to you here.
| Policy Name | Description |
|---|---|
| r8-21-06 | Physical measures to protect electronic information systems |
| Access authorization & termination | How we set up access to PHI |
| Accountability | Record movements of hardware and electronic media |
| Assigned security responsibility | Protect confidentiality, integrity, and availability (CIA) of information assets |
| Business associates | Business associates safeguard PHI |
| Data backup | Create and maintain backups of PHI |
| Disposal | Disposal of PHI and the media on which it is stored |
| Email security–acceptable use | PHI sent via email |
| Maintenance records | Document repairs and modifications to equipment such as computers or doors |
| Media re-use | Remove PHI before electronic media are re-used |
| Sanctions | Sanctions for those who do not comply with privacy and security policies |
| Security awareness and training | Security awareness and training for Community Health Plan workers |
| Security incidents | How to identify and address security breaches |
| Security | How we comply with requirements to safeguard physical resources to preserve PHI |