>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

§ 164.308(a)(8)§ 164.308(a)(8)

>Control Description

Perform a periodic technical and nontechnical evaluation, based initially upon the standards implemented under this rule and, subsequently, in response to environmental or operational changes affecting the security of electronic protected health information, that establishes the extent to which a covered entity's or business associate's security policies and procedures meet the requirements of this subpart.

>Cross-Framework Mappings

SCF

CPL-03.2
Compare
IAO-01.1
Compare
IAO-02
Compare

Ask AI

Configure your API key to use AI features.