Personal information collected and processed by GW in the course of university operations is protected by various privacy laws and regulations, including but not limited to the Family Educational Rights and Privacy Act (FERPA), Gramm-Leach Bliley Act (GLBA), and the General Data Protection Regulation (GDPR).
The Health Insurance Portability and Accountability Act (HIPAA) is a Federal law that requires the protection and confidential handling of protected health information.
Click to view our HIPAA page.
The Payment Card Industry Data Security Standards (PCI DSS) is a set of requirements designed to ensure that companies that process, store, or transmit credit card information maintain a secure environment.
All university departments that accept credit cards are required to participate in a PCI compliance program that is administered by Treasury Management in partnership with GW Information Technology.
2013 H Street, NW
Washington, DC 20052