- Confidentiality of Member Information
- General Security Controls
- Record Retention
- Paper Document Controls
- Documentation and Accounting of Disclosures
- Notification and Investigation of Breach
- Actions to Mitigate Breach Risk
- HIPAA and HITECH Training for Staff
- Routine Monitoring Auditing and Identification of Risks