Which of the following tests would provide the BEST assurance that a health care organization is handling patient data appropriately?
A . Compliance with action plans resulting from recent audits
B . Compliance with local laws and regulations
C . Compliance with industry standards and best practice
D . Compliance with the organization’s policies and procedures
Answer: B
Explanation:
The best test to provide assurance that a health care organization is handling patient data appropriately is compliance with local laws and regulations, as these are the primary sources of authority and obligation for data protection and privacy. Compliance with action plans, industry standards, or organizational policies and procedures are also important, but they may not cover all the legal requirements or reflect the current best practices for handling patient data.
References: CISA Review Manual (Digital Version), Chapter 2, Section 2.3
Latest CISA Dumps Valid Version with 2694 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund