Sec. 182.104. SECURITY COMPLIANCE. (a) The corporation shall:
(1) establish appropriate security standards to protect both the transmission and the receipt of individually identifiable health information or health care data;
(2) establish appropriate security standards to protect access to any individually identifiable health information or health care data collected, assembled, or maintained by the corporation;
(3) establish the highest levels of security and protection for access to and control of individually identifiable health information, including mental health care data and data relating to specific disease status, that is governed by more stringent state or federal privacy laws; and
(4) establish policies and procedures for the corporation for taking disciplinary actions against a board member, employee, or other person with access to individually identifiable health care information that violates state or federal privacy laws related to health care information or data maintained by the corporation.
(b) This section expires September 1, 2021.
Added by Acts 2007, 80th Leg., R.S., Ch. 845 (H.B. 1066), Sec. 1, eff. June 15, 2007.
Amended by:
Acts 2015, 84th Leg., R.S., Ch. 12 (S.B. 203), Sec. 11, eff. September 1, 2015.
For expiration of this section, see Subsection (b).
Last modified: September 28, 2016