Skip to main content
Indiana Wesleyan University Support Knowledge Base

HIPAA Privacy Compliance

Policy

Effective April 14, 2003, the Health Insurance Portability and Accountability Act (HIPAA) was amended to include privacy standards for individually identifiable Protected Health Information (PHI).

 

These new standards help to reinforce the Human Resource Department’s current practices for the confidential treatment of the personal health information of our employees and their families.

 

The following is a brief summary of the privacy practices adopted by Indiana Wesleyan University, in compliance with the HIPAA standards:

 

  • The disclosure of individually identifiable health information is limited to authorized entities, including the employee, the plan administrator, the plan sponsor, health plan business associates, and those specified by the employee.

 

  • The employee has the individual right to (a) restrict the disclosure of PHI, (b) to request confidential communications of PHI, (c) to inspect and copy PHI, (d) to amend PHI, and (e) to receive an accounting of PHI disclosures.

 

For a complete copy of the HIPAA Privacy Standards Notification, please go to the Human Resources page on the Family Site.

 

Questions concerning the standards may be addressed to the University Privacy Official in the Human Resources Department, located in suite 120 of the Maxwell Center for Business and Leadership.

 

Scope

This policy applies to all the employees of the University.

History

17-Mar-2015 - Date conversion to KB

 

Policy information

Employee Policy 300.04.06

Owner

Executive Director for Human Resources

Approved by

Vice President for Business Affairs/ CFO

  • Was this article helpful?