Mobile Device Agreement

  • Date Format: MM slash DD slash YYYY
  • Mobile Devices: This includes but is not limited to, laptops, smartphones, portable storage devices, flash memory devices, etc.
    • At a minimum, all mobile storage devices shall be secured through access control techniques (username/password, PIN numbers, biometrics, etc.).
    • All storage devices shall use encryption techniques to minimize the probability of a lost or stolen device relinquishing ePHI or other confidential information. (Device encryption is enabled by setting a username/password, PIN number, Fingerprint, Face ID or other biometric authentication)
    • In the event of a lost/stolen mobile device, the HIPAA Security Officer will be notified, and the mobile account will be suspended.
    Best Practices for Securing Information:
    • Access PHI information only in support of your job duties
    • Comply with all CMHA HIPAA Security Policies and Procedures
    • I Understand that the user is responsible, and will be held accountable for the security of protected health information that I access and/or maintain.