2019-10-25 at 12:28 am
#15102
Ameen
Participant
Apart from selecting a well-established vendor, an organization should do a regular compliance audit over the selected vendor. In the process of contract development, they should draw a section about the penalty on data breaches in addition to the HIPAA’s to make them be more aware of data protection. Moreover, there should have a section about involvement from the organization’s side when the vendor makes changes over interfaces, hardware or software or practices that can possibly affect the data.
- This reply was modified 4 years, 6 months ago by Ameen.