Health Insurance Portability and Accountability Act
As part of its mission to protect Carnegie Mellon University information, the Information Security Office coordinates various efforts related to compliance with the Health Insurance Portability and Accountability Act (HIPAA). Among other requirements, HIPAA requires Covered Entities to protect the privacy of Health Information and implement controls to safeguard Electronic Protection Health Information. This web site serves as a portal for the University's HIPAA-related security and privacy resources. Please note that not all of these resources are maintained by the Information Security Office.