The University of Hartford is committed to protecting the private health information of its employees. As part of the University's compliance with the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA), a formal policy has been published to demonstrate the University's commitment and adherence to this federal law.
HIPAA governs the way the University, its health plans, and health care providers handle employees' protected health information (PHI). The collection of individually identifiable PHI is limited to that which is needed by the University for business and legal purposes. For example, the University may collect information that would allow it to determine an employee's eligibility for benefits, or to facilitate payment for the treatment and services an employee receives from health care providers. In addition, when warranted, the University may use and/or disclose PHI in compliance with the Privacy Rule of HIPAA.
Unless written authorization from the employee has been received, no employee with access to PHI may use another employee's PHI for reasons other than indicated as permissible under HIPAA regulations. Access to PHI may be given to third parties when required to do so by federal, state, or local law.
Questions regarding this policy should be directed to your designated HR representative.