HIPAA organizational structure and administrative responsibilities. 3364-15-01

Policy Class: Compliance
Policy Action: Major revision of existing policy
Purpose of Policy: Designate UT as a hybrid entity; designate UT and UTP as an Affiliated Covered Entity (ACE); define the organizational structure and administrative responsibilities as required by HIPAA; and designate a privacy officer and information security officer and identify their administrative responsibilities.
This policy supersedes: 3364-15-01 HIPAA Administrative Simplification Policy effective 9/23/11, 3364-15-02 HIPAA Administrative Simplification (former main campus policy effective 2/26/03), 3364-15-07 Compliance with privacy and security of protected health information (PHI), 3364-15-08 Health Insurance Portability and Accountability Act (HIPAA) compliance training policy, and 3364-100-90-10 Privacy and Security Office Designation., Keywords: HIPAA, UTP, hybrid, privacy officer, information security, affiliated covered entity, security committee, covered component, workforce
Download pdf
Abstract/Description: Policy Class: Compliance

Policy Action: Major revision of existing policy

Purpose of Policy: Designate UT as a hybrid entity; designate UT and UTP as an Affiliated Covered Entity (ACE); define the organizational structure and administrative responsibilities as required by HIPAA; and designate a privacy officer and information security officer and identify their administrative responsibilities.

This policy supersedes: 3364-15-01 HIPAA Administrative Simplification Policy effective 9/23/11, 3364-15-02 HIPAA Administrative Simplification (former main campus policy effective 2/26/03), 3364-15-07 Compliance with privacy and security of protected health information (PHI), 3364-15-08 Health Insurance Portability and Accountability Act (HIPAA) compliance training policy, and 3364-100-90-10 Privacy and Security Office Designation.
Subject(s): HIPAA Policies
Alumni/Friends of UT
Faculty
Staff
Students
Vendors
Grievance



Compliance