Health Insurance Portability and Accountability Act (HIPAA)

Although the George Washington University is not a HIPAA covered entity, we take the privacy of health information seriously and have put in place several measures that are designed to protect health information from unauthorized access, use, misuse, disclosure, destruction, modification or disruption.

We work closely with the GW community to reduce the risks to health information by:

  • Documenting data protection responsibilities through HIPAA-related policies
  • Providing HIPAA training and education on program-specific basis
  • Classifying protected health information (PHI) per the Health Insurance Portability and Accountability Act (HIPAA) and applying the required HIPAA security and privacy safeguards
  • Classifying health information that is not defined as protected health information (PHI) and applying appropriate information security safeguards

If you have training needs that are not being met, please send an email to [email protected]