For healthcare institutions and enterprises using PACS, EHR, and other clinical information systems, it is necessary to have quality control, disaster recovery, data backup, emergency operation, and test plans in place to meet government and regulatory requirements, and more importantly to ensure continuity of operation under emergency situations. These plans constitute a critical component of the overall enterprise healthcare information management plan. It is most likely that there are existing policies and procedures at the healthcare institution for security, privacy, and asset management. Additional policies and procedures that are unique to PACS, EHR, and other health information systems need to be developed and implemented, with reference to other existing policies and procedures.