Project Type: Maintain Compliance Readiness

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a broad federal law that is in part designed to provide national standards for protection of certain information related to the provision of or payment for health care. There are currently 11 HIPAA covered units outside of the School of Medicine which need to comply with the HIPAA Privacy and Security Rules. We will conduct a risk analysis to identify potential compliance gaps in… Read More about HIPAA Campus Risk Assessment for HIPAA Covered Units.

This project will define incident type categories, and for each category, identify: the corresponding responsible units, the applicable governing law and University policies, and the methods of reporting incidents This project will also develop guidance for users so they can easily access, understand and follow processes in compliance with governing law and UNC-Chapel Hill Incident Management Policy. Secondary goals include improving coordination between campus “incident” authorities, reducing risk and identifying gaps in our processes. When… Read More about University Incident Management.