Statutes, codes, and regulations
West Virginia Administrative Code
Agency 114A - Secretary Of DHHR; Insurance Commissioner; And Chair Of The Health Care AuthorityTitle 114A - LEGISLATIVE RULE DEPARTMENT OF HEALTH AND HUMAN RESOURCES AND OFFICES OF THE INSURANCE COMMISSIONER
Series 114A-01 - All-Payer Claims Database - Data Submission Requirements
Section 114A-1-9 - Data Collection Privacy and Security Requirements

W. Va. Code R. § 114A-1-9

Download
PDF
Current through Register Vol. XLI, No. 50, December 13, 2024
Section 114A-1-9 - Data Collection Privacy and Security Requirements
9.1. Data submitters shall transmit all data to the Secretary or his or her designee using a secure method as described in the Submission Manual.
9.2. Transmission of the data from each data submitter to the APCD shall be in a secure manner that prevents unauthorized access and ensures authenticity, confidentiality, and integrity. This data transmission shall be secured to the level required by the HIPAA Security and Privacy Rules, 45 CFR § 164.102et seq. and shall be encrypted per NIST Special Publication 800-52 Rev.2, Guidelines for the Selection, Configuration, and use of Transport Layer Security Implementations, August 2019, NIST Special Publication 800-77 Rev. 1, Guide to IPsec VPNs, June 2020, or NIST Special Publication 800-113, Guide to SSL VPNs, July 2008, or others which are Federal Information Processing Standards 140-3, March 2019, validated.

W. Va. Code R. § 114A-1-9