Much of the School of Medicine and Public Health, including all clinical departments, has been designated a part of the Health Care Component at the University of Wisconsin-Madison and consequently is subject to the Health Insurance Portability and Accountability Act (HIPAA). The Security Rule of HIPAA mandates that protected health information (PHI) in electronic form be protected using administrative, technical and physical safeguards. As part of the effort to address HIPAA compliance, the School of Medicine and Public Health has developed a set of data security policies and created a required training module to help maintain awareness of those policies.

SMPH HIPAA Security Policies

The SMPH HIPAA security policies are found at: hipaa.med.wisc.edu/securitypolicies

---

Training

The following training module is required to ensure that all personnel that handle PHI in electronic form are aware of the key points of the policies and how they may affect the way in which they handle their data. If, after viewing the policy or completing the training you have questions, please consult your departmental IT staff.