I.  POLICY STATEMENT
 

The purpose of this policy is to secure protected health information (PHI) and other confidential information from unauthorized or unintentional alteration and/or destruction.

Contracted agencies shall develop an internal policy and associated procedures that are consistent with their organizational practices and meet the requirements set forth in this policy.
 

II.  DEFINITIONS
 

Information Technology and Security Glossary
 

III.  POLICY
 

Los Angeles County Department of Mental Health (DMH) must ensure that appropriate authentication mechanisms are implemented and enforced to corroborate stored data within its possession has not been altered or destroyed in an unauthorized and/or unintentional manner.

System Managers/Owners are responsible for implementing and enforcing integrity checks, using the integrity control processes specified in the procedure section and reporting any suspicious findings to DMH Departmental Information Security Officer (DISO).  All workforce members must also report any unauthorized, suspicious, and/or unintentional data modification or destruction to System Managers/Owners.
 

IV.  PROCEDURES
 

Procedures - Information Integrity
 

V.  AUTHORITIES
 

Code of Federal Regulations Title 45 § 164.312(c)(1) and (2), Integrity
Los Angeles County Board of Supervisors Policy No. 6.100, Information Security Policy
Los Angeles County Board of Supervisors Policy No. 6.101, Use of County Information Assets