The KBV IT Security Guideline

What you need to know – simply explained

What is the KBV Guideline?

The KBV IT Security Guideline defines minimum requirements for IT security in medical practices. It was introduced in 2021 and is mandatory for all practices.

Offizielles Dokument

Die vollständige Richtlinie finden Sie auf der KBV-Website:

KBV IT-Sicherheitsrichtlinie (PDF)

Who must comply?

All contract physicians and psychotherapists in Germany must implement the guideline. Requirements vary based on practice size.

Praxisgrößen nach KBV

S

Small Practice

1-5 people with data access

Grundlegende Anforderungen, ca. 50 Prüfpunkte

M

Medium Practice

6-20 people with data access

Erweiterte Anforderungen, ca. 100 Prüfpunkte

L

Large Practice

More than 20 people with data access

Vollständige Anforderungen, ca. 150 Prüfpunkte

The 5 Categories

Network Security

Endpoint Security

Medical Device Security

Internet Applications

Organizational Measures

What happens in case of non-compliance?

In case of data breaches or audits, inadequate IT security measures can lead to fines and liability issues. With ITSiMed, you document your compliance efforts.

Jetzt Compliance prüfen

Finden Sie in 15 Minuten heraus, wo Ihre Praxis steht.

Kostenloses Assessment starten