HIPAA
Audit Logging
Recording who accessed PHI and when, as required by the HIPAA Security Rule.
Audit logging (audit controls) is the recording of who accessed protected health information and when, so activity can be reviewed and incidents investigated. It is a firm technical-safeguard requirement under the HIPAA Security Rule (45 CFR §164.312(b)), not an optional feature.
Managed HIPAA hosting records this activity automatically and monitors for unusual access. See key security measures for HIPAA-compliant hosting.