PHYSEC FORMS | PHYSEC References | Regulations of PII | PII | PHI |
---|---|---|---|---|
What is the form the references the Security Container Information?
SF 700
|
What is the referenced Army Regulation for our physical security program?
AR 190-13
|
What is breach of PII
Results in loss of trust in the public and can have legal ramifications
|
What is PII
Social security numbers, driver's license numbers, biometrics
|
What is PHI
CAT scans, medical records, medical bills
|
What is the form that is required to be filled out COB for storage of classified materials?
SF 701
|
What is the referenced Army Regulation for security of AA&E?
AR 190-11
|
What is the Freedom of Information Act
Keeps the public informed while protecting USG interests
|
What is technical protection
Use of encryption is an example of this form of PII protection
|
What is a subset
PHI is a _____ of PII.
|
What are the two forms that can be used for background checks?
DA Form 7281 & DA Form 7708
|
What ATTP covers Physical Security?
ATTP 3-39.32
|
What is the Privacy Act of 1974
Requires the establishment of rules of conduct and safeguard of PII
|
What are the USG and corporations
These entities us PII for identification and management purposes
|
What is a non-covered entity
PHI becomes PII when disclosed to this type of entity
|
What is the form that is required for supply & equipment storage rooms?
SF 702
|
What is the regulation that will reference information about changing container combinations?
AR 380-5
|
What is the Health Insurance Portability and Accountability Act (HIPAA)
Establishes national standards for safeguarding the confidentiality, integrity, and availability of PHI
|
What is the OPM data breach of 2015
The DoD's share of this incident was reported to exceed $132 million USD
|
What are additional protective measures
PHI requires ________.
|
Where is the appropriate posting location of the SF 700?
Inside vault door
|
What is the Army Regulation that covers security of Unclassified Army Property?
AR 190-51
|
What is Health Information Technology for Economic and Clinical Health (HITECH)
Establishes notification, mitigation and remediation standards for breach of PHI records
|
What is need to know
Organizations must ensure persons with access to PII have this
|
What is TRICARE
Covered entities include which of the following: USAA, TRICARE, or OPM
|