CenterNet
CHS Home CHS Home
OSU-CHS Oklahoma State University
Center for Health Sciences
Security Policies & Proceduress
Printer Friendly
Title: Access Establishment and Modification Policy: SEC 04.03
Category: HIPAA Compliance Authority: 45 CFR §
HIPAA Section: 164.308 (a) (4) (ii) (C)
Standard: Information Access Management Responsibility: Health Care Components
Effective Date: 04/20/2005 Page 1 of 1
Approved by: OSU Legal Counsel Revised:

Purpose
 Access Establishment and Modification
Policy

Access to protected health information is granted based on documented methods of job related needs.

Reference
  • Access Authorization
  • OSU Confidentiality Agreement
CHS Procedure
 Practice Management and Electronic Medical Records
  1. Notification to provide access occurs as stated in the Access Authorization Policy.


  2. Job function determines group.


  3. Practice Management groups are selected and assigned by the Compliance Office or designated area of responsibility.


  4. If anyone needs permissions outside of their group, it must be justified and approved by the Compliance Office. These extra permissions are then documented. Changes to group access levels or creation of new groups requires approval by the Compliance Office.
SWC and UHS Procedure

Refer to SEC 04.02 Procedures

 
Google
Web CHS Centernet (non-password areas only)
OSU-System | OSU-Stillwater | OSU-OKC | OSU-Tulsa | OSU-Okmulgee | OSU-CHS | Accessibility | Webmaster

Oklahoma State University - Center for Health Sciences
1111 W. 17th St., Tulsa, OK  74107 | 918.582.1972
Copyright © 2007 Oklahoma State University - All rights reserved