Common use of HITRUST CSF Clause in Contracts

HITRUST CSF. HITRUST Common Security Framework 9.2.3 Business Associate shall maintain, at a minimum, industry standards for transmission and storage of PHI and other confidential information. 9.2.4 Business Associate shall apply security patches and upgrades, and keep virus software up-to-date, on all systems on which PHI and other confidential information may be used. 9.2.5 Business Associate shall ensure that all members of its workforce with access to PHI and/or other confidential information sign a 9.2.6 Business Associate shall identify the security official who is responsible for the development and implementation of the policies and procedures required by 45 CFR Part 164, Subpart C.

HITRUST CSF. HITRUST Common Security Framework 9.2.3 Business Associate shall maintain, at a minimum, industry standards for transmission and storage of PHI and other confidential information. 9.2.4 Business Associate shall apply security patches and upgrades, and keep virus software up-to-date, on all systems on which PHI and other confidential information may be used. 9.2.5 Business Associate shall ensure that all members of its workforce with access to PHI and/or other confidential information sign aa confidentiality statement prior to access to such data. The statement must be renewed annually. 9.2.6 Business Associate shall identify the security official who is responsible for the development and implementation of the policies and procedures required by 45 CFR Part 164, Subpart C.

HITRUST CSF. HITRUST Common Security Framework 9.2.3 Business Associate shall maintain, at a minimum, industry standards for transmission and storage of PHI and other confidential information. 9.2.4 Business Associate shall apply security patches and upgrades, and keep virus software up-up- to-date, on all systems on which PHI and other confidential information may be used. 9.2.5 Business Associate shall ensure that all members of its workforce with access to PHI and/or other confidential information sign aa confidentiality statement prior to access to such data. The statement must be renewed annually. 9.2.6 Business Associate shall identify the security official who is responsible for the development and implementation of the policies and procedures required by 45 CFR Part 164, Subpart C.