The objective of this implementation specification is to conduct an accurate and thorough
assessment of the potential vulnerabilities to the confidentiality, integrity and availability of
electronic protected health information held by the covered entity.
Question No 2
The Contingency Plan standard includes this addressable implementation specification:
Question No 3
This is a documented and routinely updated plan to create and maintain, for a specific period of
time, retrievable copies of information:
Question No 4
The objective of this standard is to perform a periodic review in response to environmental or
operational changes affecting the security of electronic protected health information.
Question No 5
The HIPAA security standards are designed to be comprehensive, technology neutral and: