Add this page to your book 
Remove this page from your book 
Manage book (
Help **This is an old revision of the document!**
Table of Contents
Compliance
Incidents
- procedure for complaints
- procedure for addressing complaints
- privacy breach mitigation
- A description on how the event was handled and managed shall be included in an incident report.
Complaint Process:
1. Filing of complaint to the Privacy Officer/Privacy Board.
2. Notification of the complaint is sent to the complainant and the affected party/parties involved.
3. Presentation of information about the incident from both parties.
4. Validation of information.
5. Decision making. If a violation is proven, the board will elevate the case to the NPC for investigation/decision/sanction. If no violation is proven, the case will be resolved.
6. Written decision of the case shall be sent to the parties involved.
References:
* How OCR Enforces the HIPAA Privacy and Security Rules. Retrieved from http://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/examples/how-OCR-enforces-the-HIPAA-privacy-and-security-rules/index.html
* Professional Regulation Commission. Legal and Other Regulatory Services. Retrieved from http://prc.gov.ph/services/default.aspx?id=17