RSS News Feed Feed Description

 

Sensitive Information Policy- now with HIPAA Audit Program Guide

 

Sensitive Information PolicyThis policy is easily modified and defines how to treat Credit Card, Social Security, Employee, and Customer Data.  The template is 22 pages in length and complies with Sarbanes Oxley Section 404, ISO17799 and HIPAA.

This policy applies to the entire enterprise, its vendors, its suppliers (including outsourcers) and co-location providers and facilities regardless of the methods used to store and retrieve sensitive information (e.g. online processing, outsourced to a third party, Internet, Intranet or swipe terminals). 

The HIPAA Audit Program Guide provides you with a checklist of the must be implemented items which HIPAA mandates. 

You can download the Table of Contents and some sample pages by clicking on the link below.

 

 

 

 

Other Policies

 

Internet, E Mail and Electronic Communication Policy - This policy is twenty-three (23) page in length, is compliant with all recent legislation (SOX, HIPAA, Patriot Act, and Sensitive information), and covers:

  • Appropriate use of equipment

  • Internet access

  • Electronic Mail

  • Retention of e-mail on personal systems

  • E-mail and business records retention

  • Copyrighted materials

  • Banned activities

  • Ownership of information

  • Security

  • Sarbanes-Oxley

  • Abuse

Included are ready to these ready to use forms:

  • Internet & Electronic Communication Employee Acknowledgement (short form)

  • E-Mail - Employee Acknowledgement (short form)

  • Internet Use Approval Form

  • Internet Access Request Form

 

Travel and Off-Site Meeting Policy - Protection of data and software is often is complicated by the fact that it can be accessed from remote locations. As individuals travel and attend off-site meetings with other  employees, contractors, suppliers and customers data and software can be compromised.  This policy is four page in length and covers:

  • Data and application security

  • Minimize attention

  • Shared public resources

  • Off-site meeting special considerations

 

Outsourcing Policy - This policy is seven page in length and covers:

  • Outsourcing Management Standard

    • Service Level Agreement

    • Responsibility

  • Outsourcing Policy

    • Policy Statement

    • Goal

  • Approval Standard

    • Base Case

    • Responsibilities
     

    Note: Look at the Practical Guide for Outsourcing over 110 page document for a more extensive process for outsourcing

 

Inhumanity Has a Price
 Thomas responded by appointing a special prosecutor, who demanded not only the records and e-mails of the paper’s writers and editors — but also sought sensitive information on the Internet-viewing habits of our readers. ... more info

STATEMENT BY THE MINISTRY FOR SOCIAL POLICY ON LOURDES HOME
 This is true for any structure, but more so in the case of a sensitive service such as the care and welfare of children in residential care. The development of the children’s sector needs to be well thought out and that decisions are ... more info

Ten tips for global communicators
 Many cultures have subtle or indirect ways of dealing with conflict and communicating sensitive information. Watch people’s faces and body language for cues. If you sense something may be amiss, ask politely if you are missing anything, ... more info

Coordinator for Finance and Administration, Quaker United Nations ...
 Good judgment and the ability to work with confidential or sensitive information. 7. Experience supervising staff and providing team leadership. 8. Fluency in written and spoken English and excellent writing skills. ... more info

276 pages of pure reality!
 The Federal Health Information Portability and Accountability Act Privacy Rule, which became effective in 2003, treats genetic information as equally sensitive as other medical information and provides the same level of protection to ... more info

Secrecy News for 05/06/08
 The IG report noted a generally favorable evaluation of DEA intelligence, except for significant delays in publication of time-sensitive intelligence information. "The DEA Chief of Intelligence told us that when reports officers receive ... more info

Catholic sacramental records...(For Your Eyes Only!)
 Catholic sacramental records are just that: CATHOLIC sacramental records and should be treated as valuable and sensitive information to be reviewed by a person or group with a legitimate cause and reason. Deviation from this policy and ... more info

software liabilities information
 Just like it is not wise to give out sensitive information such as your address or social security number on online discussion boards, it is not wise to list this type of information on a MySpace profile either. ... more info

STATE DEPARTMENT LOSES 400 LAPTOPS
 “The importance of safeguarding official laptops and office equipment containing sensitive information is not a new concern,” she said through a spokesman. “I intend to review the facts about this situation.” “Unaccounted for” does not ... more info

Who CAIRS about Access to Information? (hint: Not Steven Harper)
 Originally created in 1989, it was used as an internal tool to keep track of requests and co-ordinate the government’s response between agencies to potentially sensitive information released. Now, users mine the database to do ... more info

 

  

2008 Janco Associates, Inc. - ALL RIGHTS RESERVED --  Revised: 05/02/08.