Official UC blog

We're Re-Mapping Legacy Authority Documents!

Written by Vicki M. | Jul 31, 2020 9:14:53 PM

The UCF mapping processes and technologies have matured tremendously over the last nineteen years. To give you the best possible mappings, the UCF team is re-mapping several documents for HIPAA, public companies, and industry statutes and regulations. These documents were mapped in with our legacy processes and original control set.

To date, we have re-mapped these Authority Documents:

  • AD 985, 45 CFR Part 162 - Administrative Requirements, Remapping
  • AD 986, 45 CFR Part 160 - General Administrative Requirements, Remapping
  • AD 3201, Health Insurance Portability and Accountability Act of 1996 (HIPAA), Public Law 104-191, 104th
    Congress, Remapping
  • AD 3200, HIPAA HCFA Internet Security Policy, November 1998, Remapping

ADs 3201 and 3200 have the legacy versions of the mapping in the UCF. ADs 985 and 986 do not have the legacy versions of the mapping in the UCF. If you need the In-Depth Report for either of these documents, please contact support@unifiedcompliance.com.

The changes in each document fall into 4 categories:

  • New citations
  • New Common Control matches
  • Redacted citations
  • Citation reference changes

Also, there are two pending legacy ADs with new versions:

  • AD 3204, 45 CFR Part 164 - Security and Privacy, current as of July 6, 2020, Remapping
  • AD 3208, 45 CFR Part 170, Health Information Technology: Initial Set of Standards, Implementation Specifications, and Certification Criteria for Electronic Health Record Technology, current as of July 14, 2020

These updates are part of our standard business model to keep all new versions of relevant documents up to date.

If you have one if these documents in any of your Builds, you will need to create a new Build.
Email support at support@commoncontrolshub.com or our sales team at sales@unifiedcompliance.com to receive a Build credit to create your updated Build.

If you are using GRC tools you will need to re-import any lists with these documents into your GRC tools.