This category is about auditing, which is a mechanism for user and system accountability. Important events, such as logins and access to particular functions and data, are recorded and can be used to detect instances of non-compliant behavior and to facilitate detection of improper creation, access, modification, and deletion of personal health information.

This category is about notifications and alerts, which may be used to inform consumers of important situations that they should know about. This includes, but is not limited to, information about the app itself (e.g., important updates) or about the health information that the app handles (e.g., the specific consumer’s personal health data warrants special attention).

This category is about the process of updates (upgrades) to apps, as required to be current: e.g., new features, new health information, new technology, security, etc.