Are there requirements for covered entities to have written privacy policies? If so, what has to be addressed in the policy?

Question

Are there requirements for covered entities to have written privacy policies?  If so, what has to be addressed in the policy?

bobpursley · Answer

We will be happy to critique your thinking