⚠️ JavaScript Required

Hey, you NEED JavaScript for this application to work properly.

RiskTape is a modern web application that requires JavaScript to deliver secure, real-time compliance management features. Please enable JavaScript in your browser settings and reload the page.

‹ Back to Diagnose

Compliance / detail

ACME Corp

HIPAA Security Rule

Up to $2M per violation category, per year.

Maturity score

59 D

Controls implemented

31/ 48

Open gaps

1

Last assessed

8 days ago

Safeguard areas

4

Administrative §164.308

70

14/20

Watch

Physical §164.310

78

7/9

Watch

Technical §164.312

48

6/13

At risk

Organizational §164.314

66

4/6

Watch

Control status

48controls

Implemented 31

In progress 9

Not started 8

Recent activity

§164.312(a)(2)(iv)

Encryption of ePHI at rest

Unmet — finding f-phi

8d

§164.308(a)(1)

Risk analysis refreshed

Implemented

12d

Open gaps affecting this framework

Unencrypted patient data in a legacy datastore

A breach here is an automatic HIPAA + GDPR reportable event — penalties scale with revenue and record count.