Nev. Rev. Stat. § 603A.525
1. A regulated entity shall only authorize the employees and processors of the regulated entity to access consumer health data where reasonably necessary to:
2. A regulated entity shall establish, implement and maintain policies and practices for the administrative, technical and physical security of consumer health data. The policies must:
(Added to NRS by 2023, 3459)