Skip to content
Information Technology

Enter a Search Term

Information Technology
  • Rutgers.edu
  • Alerts
  • IT Help Portal
  • Tech Guides
Information Security
  • Locations
    • Rutgers–Camden IT
    • Rutgers–New Brunswick IT
    • Rutgers–Newark IT
    • Health Sciences IT
  • Services
    • All services
    • Getting started with IT
    • IT security
    • Teach with technology
  • Get Help
    • Support & hours
    • How-to and help articles
    • Rutgers IT Help portal
    • Report a security incident
  • About
    • About Rutgers IT
    • Office of the CIO
    • Office of Information Technology
    • Distributed IT
    • Policies
    • Strategic priorities
    • Contact Us
  • I want to...
    • Access DocuSign
    • Buy a computer or other tech
    • Contact the Help Desk
    • Connect to Wi-Fi
    • Create forms and surveys
    • Download Microsoft 365
    • Find a computing lab
    • Get Adobe Creative Cloud
    • Get a Grammarly account
    • Get software
    • Manage my NetID
    • Print on campus
    • Report a security incident
    • Get started with IT at Rutgers
    • Reset my NetID password
    • Secure my technology
    • Set up two-step login with Duo
    • Teach with technology
    • View tech guides
  • Log in to...
    • Box file storage
    • Canvas
    • Qualtrics survey tool
    • LinkedIn Learning
    • Rutgers Connect
    • myRutgers portal
    • ScarletMail
    • University software portal
    • Virtual Computer Labs
    • Webex
    • Zoom
  • IT Community
    • Committees and working groups
    • IT annual review
    • IT communications resources
    • IT community hub
    • IT email lists
    • IT Leadership Council
    • Policies
    • Slack for Rutgers IT
    • Strategic priorities
Information Security
Information Security
  • Locations
    • Rutgers–Camden IT
    • Rutgers–New Brunswick IT
    • Rutgers–Newark IT
    • Health Sciences IT
  • Services
    • All services
    • Getting started with IT
    • IT security
    • Teach with technology
  • Get Help
    • Support & hours
    • How-to and help articles
    • Rutgers IT Help portal
    • Report a security incident
  • About
    • About Rutgers IT
    • Office of the CIO
    • Office of Information Technology
    • Distributed IT
    • Policies
    • Strategic priorities
    • Contact Us
  • I want to...
    • Access DocuSign
    • Buy a computer or other tech
    • Contact the Help Desk
    • Connect to Wi-Fi
    • Create forms and surveys
    • Download Microsoft 365
    • Find a computing lab
    • Get Adobe Creative Cloud
    • Get a Grammarly account
    • Get software
    • Manage my NetID
    • Print on campus
    • Report a security incident
    • Get started with IT at Rutgers
    • Reset my NetID password
    • Secure my technology
    • Set up two-step login with Duo
    • Teach with technology
    • View tech guides
  • Log in to...
    • Box file storage
    • Canvas
    • Qualtrics survey tool
    • LinkedIn Learning
    • Rutgers Connect
    • myRutgers portal
    • ScarletMail
    • University software portal
    • Virtual Computer Labs
    • Webex
    • Zoom
  • IT Community
    • Committees and working groups
    • IT annual review
    • IT communications resources
    • IT community hub
    • IT email lists
    • IT Leadership Council
    • Policies
    • Slack for Rutgers IT
    • Strategic priorities
  • Rutgers.edu
  • Alerts
  • IT Help Portal
  • Tech Guides

Cybersecurity Compliance Program

  • Cybersecurity Compliance Program
  • GLBA Compliance Program
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Health Insurance Portability and Accountability Act (HIPAA)
Stethoscope and laptop

Health Insurance Portability and Accountability Act (HIPAA)

Overview

The Health Insurance Portability & Accountability Act of 1996 requires the institution to secure a patient’s electronic protected health information (ePHI). This protection is provided by administrative, physical, and technical processes and controls. The OIT-Information Security Office is charged with assisting the University in achieving compliance with the HIPAA Security Rule.

Departments involved in the electronic transmission of patient records, as well as any subcontractors, are required to be compliant with HIPAA standards which necessitates prudent security practices.

The HIPAA Security Rule is intended to be scalable and does not require specific technologies to be used. Covered entities may elect solutions that are appropriate to their operations, provided the selected solutions are supported by a thorough security assessment and risk analysis.

The standards for the Security Rule are grouped into five categories:

  • Administrative safeguards
  • Physical safeguards
  • Technical safeguards
  • Organizational standards
  • Policies, procedures, and documentation requirements.

Program

  1. All departments that accept, process, store, and transmit electronic protected healthcare information (ePHI) must ensure that all applicable systems and databases used to process this data undergo risk assessments as conducted by the Risk Management team.
  2. University Ethics and Compliance provides mandatory, annual HIPAA training for identified units and departments that process healthcare data (PHI). The Information Security Office provides supplemental training that can be requested by management for identified groups (see additional resources link below).
  3. University policies should be reviewed by all members of the university who access, use, transmit or otherwise process electronic protected healthcare information (ePHI).
  4. The Compliance team is available to consult with schools and business units to ensure adherence to all HIPAA Security Rule regulatory requirements.

Review additional resources below for policy and training requirements.

HIPAA support and additional resources

Supplemental HIPAA refresher training

Register staff for this supplemental training as needed.

Supplemental HIPAA Training

Policy requirements

Learn more about the policy’s role at Rutgers.

HIPAA Policy Requirements

Inquiries

Contact us with questions regarding the HIPAA Security Rule.

Contact Us
Rutgers logo
  • Universitywide
  • Rutgers University—New Brunswick
  • Rutgers University—Newark
  • Rutgers University—Camden
  • Rutgers Health
  • Search Rutgers

Explore Rutgers IT

  • Annual review
  • Latest news
  • IT Security
  • myRutgers portal
  • Software portal

Rutgers IT News

  • The many hats of Jason Khurdan: Digital accessibility, martial arts, and 3D-printed worlds
  • Smart and secure: Choose Copilot for your chatbot through Rutgers Connect
  • Infographic: check a link on your mobile device
  • Learn strategic planning for digital accessibility on June 17
  • Faculty and staff: Explore shared storage options at Rutgers

Tech Guides

  • Student Tech Guide
  • Faculty Tech Guide
  • Staff Tech Guide

About

  • About Rutgers IT
  • Office of the Chief Information Officer
  • Office of Information Technology
  • Distributed IT
  • Policies
  • Strategic Priorities for Rutgers IT
  • Contact Us

Feedback

  • Submit your comments, suggestions, and other feedback about IT at Rutgers.

Follow Us

Rutgers is an equal access/equal opportunity institution. Individuals with disabilities are encouraged to direct suggestions, comments, or complaints concerning any accessibility issues with Rutgers websites to accessibility@rutgers.edu or complete the Report Accessibility Barrier / Provide Feedback form.

Copyright ©2026, Rutgers, The State University of New Jersey. All rights reserved. Contact webmaster