Privacy retention requirements could be longer than 6 years (see below).
160.530(j)(1) Standard: documentation. A covered entity must:
(i) Maintain the policies and procedures provided for in paragraph (i) of this section in written or electronic form;
(ii) If a communication is required by this subpart to be in writing, maintain such writing, or an electronic copy, as documentation; and
(iii) If an action, activity, or designation is required by this subpart to be documented, maintain a written or electronic record of such action, activity, or designation.
(2) Implementation specification: retention period. A covered entity must retain the documentation required by paragraph (j)(1) of this section for six years from the date of its creation or the date when it last was in effect, whichever is later.
Information Privacy Coordinator
Presbyterian Healthcare Services
From: Woloszyn, J William [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 12, 2002 9:06 AM
To: 'Street, Bunny'; [EMAIL PROTECTED]; '[EMAIL PROTECTED]'
Subject: RE: retention of documentation
Everything I've seen concerning retention (in privacy) has been 6 years. We are approaching security with the same schedule.
Wm
-----Original Message-----
From: Street,
Bunny [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 12, 2002 9:22 AM
To: [EMAIL PROTECTED]; '[EMAIL PROTECTED]'
Subject: RE: retention of documentation
Although the security regs are in proposed status, is anyone
aware of
references to retention requirements for
documentation; such as how long
should audit information
be retained? Thanks
Leslie Street
Privacy Specialist
Mountain States Health Alliance
Johnson
City, TN 36704
423-431-1661
[EMAIL PROTECTED]
**********************************************************************
To be removed from this list, go to: http://snip.wedi.org/unsubscribe.cfm?list=privacy
and enter your email address.
**********************************************************************
To be removed from this list, go to: http://snip.wedi.org/unsubscribe.cfm?list=privacy
and enter your email address.
**********************************************************************
To be removed from this list, go to: http://snip.wedi.org/unsubscribe.cfm?list=privacy
and enter your email address.
--- PRESBYTERIAN HEALTHCARE SERVICES DISCLAIMER ---
This message originates from Presbyterian Healthcare Services or one of its affiliated organizations. It contains information, which may be confidential or privileged, and is intended only for the individual or entity named above. It is prohibited for anyone else to disclose, copy, distribute or use the contents of this message. All personal messages express views solely of the sender, which are not to be attributed to Presbyterian Healthcare Services or any of its affiliated organizations, and may not be distributed without this disclaimer. If you received this message in error, please notify us immediately at [EMAIL PROTECTED]
