Benchmark: 164.314 Organizational Requirements
Description
The Security Rule includes the Standard, Business associate contracts or other arrangements. A covered entity is not in compliance with the standard if the it knows of a pattern of an activity or practice of the business associate that constitutes a material breach or violation of the business associate's obligation to safeguard ePHI (under the contract or other arrangement), unless the covered entity takes reasonable steps to cure the breach or end the violation, as applicable. If such steps are unsuccessful, the covered entity is required to terminate the contract or arrangement, if feasible or if termination is not feasible, report the problem to the Secretary (HHS).
Usage
Browse dashboards and select 164.314 Organizational Requirements:
steampipe dashboardOr run the benchmarks in your terminal:
steampipe check aws_compliance.benchmark.hipaa_final_omnibus_security_rule_2013_164_314Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share aws_compliance.benchmark.hipaa_final_omnibus_security_rule_2013_164_314Benchmarks
- 164.314(b)(1) Requirements for group health plans
- 164.314(b)(2) Implementation specifications
- 164.314(b)(2)(i)
- 164.314(b)(2)(ii)
- 164.314(b)(2)(iii)
- 164.314(b)(2)(iv)