Change Page Size of List
Page Size  
No record to display
Summary:

An agency may disclose personal information to the University of California or a nonprofit entity conducting scientific research, provided the request for information is approved by the Committee for the Protection of Human Subjects (CPHS) for the California Health and Human Services Agency (CHHSA) or an authorized institutional review board. To be approved, the researcher must have a plan to (1) protect personal information from improper use and disclosures, including sufficient administrative, physical, and technical safeguards to protect personal information from reasonable anticipated threats to the security or confidentiality of the information; (2) to destroy or return all personal information as soon as it is no longer needed for the research project; (3) have provided sufficient written assurances that the personal information will not be reused or disclosed to any other person or entity, or used in any manner, not approved in the research protocol, except as required by law or for authorized oversigh

Summary:

Each agency shall establish appropriate and reasonable administrative, technical, and physical safeguards to ensure compliance with the IPA, to ensure the security and confidentiality of records, and to protect against anticipated threats or hazards to security.

Keywords:
agency, safeguards
Summary:

Every provider of health care shall establish and implement appropriate administrative, technical, and physical safeguards to protect the privacy of patient's medical information. Every provider of health care shall reasonably safeguard confidential medical information from any unauthorized access or unlawful access, use, or disclosure.

Summary:

Access control. Implement technical policies and procedures to restrict access to protected electronic health information to authorized persons

Summary:

audit controls (record and examine activity in information systems that contain or use electronic protected health information)

Summary:

Integrity (protect electronic protected health information from improper alteration or destruction);

Summary:

Person or entity authentication

Summary:

Any health care provider choosing to use an electronic recordkeeping system shall develop and implement policies to include safeguards for confidentiality and unauthorized electronic access.

Summary:

Mandated reports required by law, and child abuse or neglect investigative reports filed with the Department of Justice, shall be confidential and may be disclosed only to certain persons or agencies, including: the State Department of Social Services, "hospital scan teams" (i.e. teams of health care professionals and law enforcement and child protective services representatives that seek to identify child abuse or neglect); coroners and medical examiners conducting a post mortem examination of a child; out-of-state law enforcement agencies upon a signed and written request that cites (1) the applicable out-of-state statute or interstate compact provision and (2) the safeguards in place to prevent unlawful disclosure provided by the requesting state or the applicable interstate compact provision; out-of-state agencies responsible for approving prospective foster or adoptive parents for placement of a child, upon request that is (1) in compliance with the Adam Walsh Child Protection and Safety Act of 2006, (2)

Summary:

Subject to certain conditions and requirements, the Department of Justice shall make available any information maintained in the Child Abuse Central Index to out-of-state law enforcement agencies conducting investigations of known or suspected child abuse or neglect. The information contained within these reports shall be disclosed only to law enforcement, prosecutorial entities, or multidisciplinary investigative teams, and the written request shall cite the safeguards in place to prevent unlawful disclosure of any confidential information provided.

Now viewing : Page 1 of 2 first     previous     next     last