This entry is part 13 of 59 in the series Complete Guide to HIPAA Security Final Rule

This section of the HIPAA Security Final Rule includes those safeguards that are defined as the physicalmeasures, policies, and procedures to protect a covered entity’s electronic information systems and related buildings and equipment, from natural and environmental hazards, and unauthorized intrusion.

Physical safeguards are physical measures, policies, and procedures to protect a covered entity’s electronic information systems and related buildings and equipment, from natural and environmental hazards, and unauthorized intrusion.

Physical safeguards include physical security access, card access solutions, paper destruction procedures, and computer room access. There are four physical safeguards standards and these are:

  1. Facility Access Controls
  2. Workstation Use
  3. Workstation Security
  4. Device and Media Controls
Series Navigation<< 164.310(d)(2)(iii) Standard: Device and media controls – Accountability164.308(a)(7)(ii)(B) Standard: Contingency plan – Disaster recovery plan >>

Michelle Caswell

Senior Director, Legal & Compliance at Clearwater Compliance
Michelle Caswell has over 14 years legal and healthcare experience and worked as a HIPAA Investigator for the U.S. Department of Health and Human Services, Office for Civil Rights where she ensured covered entities were in compliance with HIPAA, conducted complaint investigations and educated entities on HIPAA compliance. Michelle brings that experience to Clearwater Compliance as Senior Director, Legal and Compliance.