User login


HIPAA Privacy and Information Security Training

Effective Date:    November 2018


Policy Statement

The Trustees of Columbia University in the City of New York is committed to complying with all regulatory requirements, including assuring that the Columbia University Healthcare Component (CUHC) workforce members receive educational information related to the regulatory requirements of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). All CUHC workforce members will complete HIPAA training including information about CUHC Privacy and Information Security programs.


Reason(s) for the Policy

The HIPAA Rules require healthcare organizations provide education and information about the regulatory requirements of HIPAA to their workforce members, including the related policies and procedures with respect to Protected Health Information (PHI). 


Primary Guidance to Which This Policy Responds


§ 164.308 Administrative safeguards (a) (5) (i) and §164.530 Administrative requirements (2) (b) (1)


Responsible University Office & Officer

Office of HIPAA Compliance, Privacy Officer

Columbia University Medical Center, Chief Information Security Officer (CISO)



To see the full text of this policy, please use the link on the right.