...
Creating a template: using the template and providing instructions on using the template as notes, (in line )
HIPPA - Legislation
http://www.hipaasurvivalguide.com/hipaa-regulations/part-164.php
- Of note - § 164.414(b) Burden of proof. In the event of a use or disclosure in violation of subpart E, the covered entity or business associate, as applicable, shall have the burden of demonstrating that all notifications were made as required by this subpart or that the use or disclosure did not constitute a breach, as defined at § 164.402.
CFR42 Part2 Regulation Link
https://www.regulations.gov/document?D=HHS-OS-2016-0005-0001
Background Info
View file | ||||
---|---|---|---|---|
|
Objective of this CR Extension
...
Section 2: fields mapped to the CR v1.1
Table 1
CR v1.1 Field Name | Equivalent GDPR Term | GDPR CR Field Name | GDPR Field Description (Put in examples) | JSON | Required / Optional | Data Type |
Version | ||||||
Jurisdiction | ||||||
Consent Timestamp | ||||||
Collection Method | ||||||
Consent Receipt ID | ||||||
Public Key | ||||||
Language | ||||||
PII Principal ID | ||||||
PII Controller | ||||||
On Behalf | ||||||
PII Controller Contact | ||||||
PII Controller Address | ||||||
PII Controller Email | ||||||
PII Controller Phone | ||||||
PII Controller URL | ||||||
Privacy Policy | ||||||
Service | ||||||
Purpose | ||||||
Purpose Categories | ||||||
Consent Type | ||||||
PII Categories | ||||||
Primary Purpose | ||||||
Termination | ||||||
Third Party Disclosure | ||||||
Third Party Name | ||||||
Sensitive PII | ||||||
Sensitive PII Category |
Section 3: Additional CR v1.1 Field Extensions for CFR42 Part2
Table 2:
Field Name | Guidance | Description | Data Types (define field format) | JSON | Required / Optional |
Section 4: Schema
Summary
...