It is the policy of the UNC School of Medicine and the UNC Health Care System to provide training on HIPAA Privacy/Security regulations to all employees, volunteers, and students employed by either entity with thirty days of initial employment. Further, the UNC School of Medicine requires all employees to update HIPAA training on an annual basis.
In addition, the University’s Department of Environment, Health, and Safety (EHS) has job specific annual training and immunization requirements. It is essential that SPA employees complete such requirements as necessary. A matrix of EHS requirements for specific work environments can be accessed here Environmental Health and Safety training requirements.
In an effort to assist management in ensuring these requirements are met, all SOM SPA employees shall have a Communication, Teamwork & Compliance principal function as part of the Work Plan section of the SPA Performance Management and Competency Assessment Form.
University HIPAA Web Site - In 1996, Congress enacted the Health Insurance Portability and Accountability Act (HIPAA).
- The Information Security & Privacy Office responds to and investigates incidents related to misuse or abuse of UNC School of Medicine information technology resources. Incident reports are submitted to the UNC Healthcare System Security Incident Response Team (SIRT) which addresses security and privacy incidents. SIRT is a joint effort that includes UNC Hospitals, UNC Physician & Associates, and UNC School of Medicine.
Environmental Health & Safety - Biological Safety, Chemical Safety, Environmental Affairs, Industrial Hygiene, Lab Safety, Radiation Safety, Occupational Health Clinic, Workers' Compensation, Workplace Safety, etc.