A HIPAA disaster recovery plan (HIPAA DRP) is a formal plan that specifies the actions, processes and methodologies that must be adopted to secure and restore electronic health records (EHR) in case of a natural or unnatural disaster, calamity or similar event.
HIPAA DRP can be applied to all entities that create, store or process electronic health records in some form. These include health providers, health care/medical insurance agencies and clearing houses.
The HIPAA DRP plan must specify the planned operations and processes from recovering from an emergency and moving data securely in between different locations. HIPAA DRP typically consists of a series of different sub-plans that work together to ensure the protection, integrity and availability of EHR.
|