The purpose of this checklist is to assist custodians and clinic teams with assessing the safeguards within their practice.
In the Health Information Act (HIA) and the Health Information Regulation (HIR), custodians must take reasonable steps to maintain administrative, technical and physical safeguards to ensure the protection of health information in their custody or under their control.
Taking reasonable steps means complying with the general and specific obligations and standards for health information security set out in section 8 of the HIR. Physical, administrative and technical safeguards generally include physical standards, administrative procedures and technical security services and mechanisms.