HITRUST adds privacy controls to security framework

The Health Information Trust Alliance (HITRUST) will include privacy controls in version seven of its Common Security Framework.

The privacy controls will make the framework the only one organizations need to rely on to manage their information privacy and security risk and compliance, according to an announcement.

"The new HITRUST CSF privacy domain facilitates an integrated approach to protect personal health information, aids in regulatory compliance, is consistent with healthcare industry trends, and enhances the current HITRUST CSF," Angela Holzworth, senior information risk analyst, Highmark Health and HITRUST Privacy Working Group Chairwoman, says.

The framework incorporates the Minimum Acceptable Risk Standards for Exchanges (MARS-E), additional guidance for cybersecurity and enhancements to risk factors and assurance methodology. Announcement

Suggested Articles

Los Angeles-based City of Hope is partnering with Amazon to offer enhanced cancer support services to the online retail giant's employees in the U.S.

Tampa General Hospital partnered with technology company OnMed to be the first to deploy the company's telemedicine station inside the hospital.

Genealogy company Ancestry is expanding into genetic health testing, ramping up competition with 23andMe.