A healthcare provider discovers that protected health information of patients was altered without patient consent. The healthcare provider is subject to HIPAA compliance and is required to protect PHI data. Which type of security safeguard should be implemented to resolve this issue?
- technical and physical access control
- physical device and media control
- administrative security management processes
- technical integrity and transmission security
Answer(s): D
Explanation:
According to the following link, answer 'C' is for implement procedures to regularly review records of information system activity, access logs and security incident tracking - not prevent it. Answer 'D' is for Implement policies and procedures to protect ePHI from improper alteration or destruction.
Reference:
https://www.cisco.com/en/US/docs/solutions/Enterprise/Compliance/HIPAA/HIP_AppC.html#wp1085353
Reveal Solution Next Question