Home

ISO 27799:2008
Subscribe to updates

Health informatics -- Information security management in health using ISO/IEC 27002

Abstract

ISO 27799:2008 defines guidelines to support the interpretation and implementation in health informatics of ISO/IEC 27002 and is a companion to that standard.

ISO 27799:2008 specifies a set of detailed controls for managing health information security and provides health information security best practice guidelines. By implementing this International Standard, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information.

ISO 27799:2008 applies to health information in all its aspects; whatever form the information takes (words and numbers, sound recordings, drawings, video and medical images), whatever means are used to store it (printing or writing on paper or electronic storage) and whatever means are used to transmit it (by hand, via fax, over computer networks or by post), as the information must always be appropriately protected.

 

  • Edition: 1 (Monolingual) ICS: 35.240.80
    Status: Published Stage: 90.92 (2012-09-06)
    TC/SC: ISO/TC 215 Number of Pages: 58
  • Revised by: ISO/DIS 27799

  • No corrigenda or amendments available

Format Language
PDF
Paper

CHF178

Add to basket

Contact customer services

Send your enquiry by email
or call us on +41 22 749 08 88
09:00 – 12:30, 14:00 – 17:00 (UTC+1).