Kompakt: Die IT-Sicherheitsrichtlinie der KBV

Compact: The KBV’s IT security guidelines

The IT security guidelines of the KBV (National Association of Statutory Health Insurance Physicians) are a document that defines the requirements for information security in medical practices . The guideline was created in collaboration with the Federal Office for Information Security (BSI) and is regularly updated.

The goals of the KBV IT security policy are:

  • Protecting patient data from unauthorized access, alteration or destruction
  • Prevention of IT failures and disruptions
  • Securing the IT infrastructure
  • Ensuring IT continuity

The KBV IT security policy contains the following requirements:

  • IT security management
  • IT security architecture
  • IT security organization
  • IT security incidents
  • IT security training

In order to meet the requirements of the KBV IT security guidelines, medical practices must take the following measures:

  • Create an IT security concept
  • Implement IT security precautions
  • Conduct IT security training
  • Report IT security incidents

The KBV IT security guidelines are an important document for information security in medical practices. By complying with the requirements of the directive, medical practices can increase the security of their patient data and IT infrastructure.

Here are some additional tips on how medical practices can comply with the KBV's IT security guidelines:

  • Use strong passwords and change them regularly.
  • Always use two-factor authentication wherever possible.
  • Install current security updates on your IT infrastructure.
  • Use a professional firewall and antivirus program.
  • Back up your data professionally and with the right backup strategy .
  • Create a contingency plan in the event of an IT failure.
  • Train your employees in IT security with simple but effective cybersecurity training

By implementing these tips you can Medical practices can improve their IT security and increase the security of their patient data and their IT infrastructure.

Back to blog

Leave a comment

Please note, comments need to be approved before they are published.

Courses & Training