If a correctional facility is deemed to be a covered entity under HIPAA, what type of officer would have to be appointed? What would be some of the duties of this appointed officer?

Any correctional institution that is deemed to be a covered entity would have to appoint a privacy officer, to promulgate policies and procedures protecting the privacy of inmate health information, and to allow inmates access to their health records as a general rule.