"...the Security Risk Assessment Tool 3.0 (SRA Tool), designed to help covered entities and business associates that handle patient information to identify and assess #risks and vulnerabilities to the confidentiality, integrity, and availability of protected health information (PHI) in their environment. The HIPAA #Security Rule requires health care providers, health plans and business associates to conduct risk analyses and implement technical, physical and administrative safeguards to protect Electronic Protected Health Information (ePHI). "
