Members shall maintain and enforce policies and procedures which are in accordance with the statutes and regulations within the jurisdiction where licensed regarding the protection of the personal health information of patients, and shall ensure that there are appropriate safeguards in place to prevent inappropriate or non-essential access or use of a patient’s personal health information.