However, the HIPAA administrative simplification provisions, which are specifically intended for the creation of a single identifier, have been suspended due to numerous controversies over how it could be implemented without individual privacy. Federal authorities are also under pressure from the Office of Administration and Budget to reduce the use of social security numbers as unique identifiers. But developing some kind of login key (not based on social security numbers) would make connections more efficient, more standardized, more reliable and less expensive. In addition, this type of link could significantly facilitate many types of information research, provide broader health histy, facilitate public health surveillance, and improve the quality of care (HHS, 1998; Hillestad et al., 2008). This document may not apply to all covered entities. However, in workplaces that allow employees to use personal devices (mobile phones, laptops, tablets), it is absolutely necessary to connect to networks or systems that access the PHI. A BYOD directive describes all the rules of your organization for personnel equipment. A good BYOD should include the following provisions: the National Committee for Vital Statistics and Health (NCVHS), the Association of American Medical Colleges (AAMC) and the SACHRP have all the recommended amendments to the provisions of the AOD (see Appendix A). Witnesses to the first public hearing of the NCVHS Privacy and Privacy Subcommittee in August 2001 suggested that the listed entities would likely refuse to share PHI because of the burden imposed by the provisions of the OIS. NCVHS stated that it supported an individual`s right to have an AOD, but suggested that HHS provide guidelines to enable seized companies to meet this requirement in a practical and practical manner. To date, no effort has been made to identify organizations that have successfully implemented the LYA requirement or the practices they have implemented (Pritts, 2008). A BAA is a signed document that confirms the willingness of a third-party supplier to take responsibility for the safety of your customers`PHI, to comply with appropriate security measures and to meet hipaa requirements when dealing with PHI on your behalf.