Do you know what your vendor is doing with your data?
June 7 | 11-12:15pm CT
As we’ve seen very publicly in recent weeks with Facebook, when data leaves an organization’s controls it is challenging for that organization to have control and oversight to all uses of that data. All covered entities, and their business associates, do hold a responsibility to follow the Minimum Necessary requirement (45 CFR 164.506) by developing policies and procedures that reasonably limit its disclosure and use of ePHI.
