HIPAA Security Rule Checklist

HIPAA Security Rule Checklist 03

HIPAA Security Rule Checklist

The HIPAA Security Rule covers electronic protected health information (ePHI), which is any individually identifiable health information in electronic format. It has 18 safeguards standards, each of which is mandatory, along with 36 implementation specifications.

Professor Daniel Solove created this 6-page checklist of the HIPAA Security Rule’s standards and specifications to help summarize them in a user-friendly manner.

This checklist covers the HIPAA Administrative Safeguards, HIPAA Physical Safeguards, and HIPAA Technical Safeguards including:

  • security management process
  • assigned security responsibility
  • workforce security
  • information access management
  • security awareness and training
  • security incident procedures
  • contingency plan
  • evaluation
  • business associate contracts and other arrangements
  • facility access controls
  • workstation use
  • workstation security
  • device and media controls
  • access control
  • audit controls
  • integrity
  • person or entity authentication
  • transmission security

    Please Complete the Form Below

    Job Title


    Professor Solove’s newsletter covers his latest writings, events, and training.
    It is sent weekly. You can unsubscribe at any time.
    Click to see a sample issue.
    Would you be interested in subscribing?

    YesNoAlready Subscribed

    To receive Professor Solove's newsletter please provide the following information:


    First Name

    Last Name


    HIPAA Security Rule Checklist