New Jersey Statutes 52:9YY-7. Security of health data
Current as of: 2024 | Check for updates
|
Other versions
Terms Used In New Jersey Statutes 52:9YY-7
- person: includes corporations, companies, associations, societies, firms, partnerships and joint stock companies as well as individuals, unless restricted by the context to an individual as distinguished from a corporate entity or specifically restricted to one or some of the above enumerated synonyms and, when used to designate the owner of property which may be the subject of an offense, includes this State, the United States, any other State of the United States as defined infra and any foreign country or government lawfully owning or possessing property within this State. See New Jersey Statutes 1:1-2
7. The department shall take appropriate measures to protect the security of health data which it obtains, including:
a. limiting access to the data to authorized persons;
b. designating a person to be responsible for the physical security of the data;
c. developing and implementing a system for monitoring the security of the data;
d. periodically reviewing all health data to evaluate whether it is appropriate to remove identifying characteristics from the data; and
e. developing a program for the routine scheduled destruction of all forms, records or electronic files maintained by the department which contain identifiable health data.
L.2001, c.192, s.7; amended 2010, c.87, s.15.