Standard documents
This is a list of all standard documents published by PLC. All standard documents have links to related drafting notes and are regularly updated by PLC editors.
For information on converting PLC standard documents into your firm's style, see PLC Firmstyle (www.practicallaw.com/A30700).
| HIPAA Notice of Privacy Practices A sample notice from a covered entity that is a group health plan to an individual explaining the plan's privacy practices and how it may use and disclose the individual's protected health information. This notice is designed to comply with the requirements of HIPAA but does not address any applicable state law requirements. This Standard Document has integrated drafting notes with important explanations and drafting tips. This Standard Document is in the process of being updated for final HIPAA regulations issued in January 2013. |
| HIPAA Request for Accounting of Disclosures A sample form for an individual to request a HIPAA covered entity (which includes health plans) to provide an accounting of disclosures of protected health information that were made by the covered entity. This form is designed to comply with HIPAA but does not address any applicable state law requirements. This Standard Document has integrated notes with important explanations and drafting tips. |
| HIPAA Notice of Privacy Practices Acknowledgment Form A sample form from an individual to a covered entity acknowledging that the individual received the covered entity's Notice of Privacy Practices, as required by the Health Insurance Portability and Accountability Act of 1996 (HIPAA). This form does not address any applicable state law privacy requirements. This Standard Document has integrated notes with important explanations and drafting tips. |
| HIPAA Business Associate Agreement A model agreement between an entity subject to HIPAA's privacy and security rules and its business associate, providing for the safeguarding of protected health information received or created on behalf of the entity. This Standard Document has integrated drafting notes with important explanations and drafting tips. This Standard Document is in the process of being updated for final HIPAA regulations issued in January 2013. |
| Website Privacy Policy A model website privacy policy for use by an online business in connection with the collection, storage, use and disclosure of personal information, including for the purpose of selling goods or services to users of the site, or for contacting users with direct marketing information. This Standard Document has integrated notes with important explanations and drafting tips. |
| HIPAA Business Associate Policy A sample Business Associate Policy to be adopted by a covered entity to set out its policies and procedures for addressing business associate contract requirements imposed by the Health Insurance Portability and Accountability Act of 1996. This Standard Document has integrated drafting notes with important explanations and drafting tips. This Standard Document is in the process of being updated for final HIPAA regulations issued in January 2013. |
| Mobile application privacy policy A policy for use by a business that offers a mobile app on a website, offers services through the app, collects non-sensitive personal data in connection with an individual’s use of the app and those services and stores and uses the data for the purpose of supplying those services and for contacting users with direct marketing information. |
| Image release This is a form of release to authorise the use of photographs featuring a member of the public. |
| Data Security Breach Notice Letter A letter from a company to individuals (for example, employees or customers) notifying those individuals of a data security breach involving their personal information. This Standard Document has integrated notes with important explanations and drafting tips. |
| Bring Your Own Device to Work (BYOD) Policy A policy for employers that wish to allow their employees to use their own smartphones, tablets or other mobile devices for work either while at the office or during nonworking hours. This policy can be incorporated into an employee handbook or used as a stand-alone policy document. This Standard Document applies only to private workplaces and is jurisdiction neutral. State or local law may impose additional or different requirements, but this document will be useful and relevant to employers in every state. This Standard Document has integrated notes with important explanations and drafting tips. |
| HIPAA Authorization for Use and Disclosure of Protected Health Information A sample form to be provided by an individual to a covered entity authorizing the covered entity to use or disclose protected health information for certain purposes. This authorization is designed to comply with the requirements of the Health Insurance Portability and Accountability Act (HIPAA) but does not address any applicable state law requirements. This Standard Document has integrated notes and important explanations and drafting tips. This Standard Document is in the process of being updated for final HIPAA regulations issued in January 2013. |
| Mobile Application Privacy Policy A model mobile application (app) privacy policy for use by an online business for the collection, storage, use and disclosure of personal information, including for the purpose of selling goods or services to users of the business's mobile application, or for contacting users with direct marketing information. This Standard Document has integrated notes with important explanations and drafting tips. |
| Red Flags Rule Identity Theft Prevention Program Master Policy A master policy setting up the framework for developing, implementing, updating and administering a written identity theft prevention program required by the Federal Trade Commission's Red Flags Rule. This Standard Document has integrated notes with important explanatory and drafting tips. |
{ "siteName" : "PLC",
"objType" : "PLC_GROUPING_C",
"objID" : "1247242320147",
"objName" : "Standard documents",
"userID" : "2",
"objUrl" : "http://ld.practicallaw.com/cs/Satellite/resourcetype6-103-0965?pa=1247242344492",
"pageType" : "",
"contentAccessed" : "true",
"analyticsPermCookie" : "256c544cf:13ed820c621:-5ab2",
"analyticsSessionCookie" : "256c544cf:13ed820c621:-5ab1",
"statisticSensorPath" : "http://analytics.practicallaw.com/sensor/statistic"
}