Is Your Practice HIPAA Compliant?


Audit Controls: STANDARD § 164.312(b)

The next standard in the Technical Safeguards section is Audit Controls. This standard has no implementation specifications. The Audit Controls standard requires a covered entity to:


"Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information."


§164.308(a)(1)(ii)(D): Security Management Process - Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.

Dept of Health & Human Service
 HIPAA Security Series pdf

Patient Access Audit Report

Patient Access Audit Report

The data is collected behind the scenes, and shows when an operator merely views patient records, not just changing them. As you know, our software already provides tools for you to limit operator access to certain areas based on password (Security Passwords). We also already provide reports of who and when patient records (Demographics Report), and who, when, and why line item records

To schedule a demonstration or to speak to a sales representative contact Kendra Witman
Phone: 1-800-845-8460 email– kendra@csrc.com