Standards Group:
YALE-MSS-13: Logging
YALE-MSS-13.4: Collect and review all source system activity logs
Low Risk Endpoint
Not Required
Moderate Risk Endpoint
Not Required
High Risk Endpoint
Not Required
Low Risk Server
Not Required
Moderate Risk Server
Not Required
High Risk Server
Required for HIPAA
Low Risk Mobile Device
Not Required
Moderate Risk Mobile Device
Not Required
High Risk Mobile Device
Not Required
Low Risk Network Printer
Not Required
Moderate Risk Network Printer
Not Required
High Risk Network Printer
Not Required
Details
A Source System is a system that is the authoritative data source for a given data element or piece of information used for patient care or billing.
Yale HIPAA Policy 5142 requires this standard to ensure that source systems are identified, appropriately categorized, monitored and reviewed to ensure compliance with institutional policies and procedures and Federal HIPAA regulations related to system activity controls, and to discourage, prevent and detect security violations.