Healthcare providers must implement:
Data classification involves categorising health information based on sensitivity levels (Sensitive Normal or Sensitive High) and applying appropriate security safeguards to each category.