Office of the CISO


Health Insurance Portability and Accountability Act

UW Information

The HIPAA Privacy Rule protects the privacy of individually identifiable health information. The HIPAA Security Rule, sets national standards for the security of electronic protected health information.

Subject Areas:
Healthcare/Patient Records

Examples of Types of Data:
Patient names, street address, city, county, zip code, dates (except year) for dates related to an individual, Social Security Numbers, health conditions and symptoms, prescriptions, account/medical record numbers, health plan beneficiary information, certificate and license numbers, vehicle identification and serial numbers, device identification and serial numbers, biometric identifiers, full-face images, any other unique identifying number, characteristic or code, payment guarantor’s information, telephone and fax numbers, email, URL and IP addresses

UW Subject Matter Experts

Lisa Westlund
Compliance Officer
UW Medicine Compliance

HIPAA Information

Authority or Enforcement Commission(s): Office of Civil Rights

*A brief description is provided by the UW Subject Matter Experts to assist the UW community; it is not a legal description or an official description from the external authority, and should not be construed as legal advice.