Health Insurance, Portability, and Accountability Act of 1996 & Health Information Technology & Clinical Health (HITECH) Act

Federally Mandated Reporting/Disclosure of Unsecured Protected Health Information (PHI)

Program Title and Description:

The HIPAA Privacy and Security Rules and the HITECH Act requires that all health care facilities or organizations that create, receive, transmit and maintain protected health information (PHI) protect that information from disclosure.

Who is Responsible for Reporting?

Contact if disclosure of PHI in paper form:
University Privacy Officer, Frederick Muegge - Magers Health and Wellness Center

Contact if disclosure of PHI in electronic form:
University Security Officer, Rob Martin - Computer Services

Where is Information about HIPAA available?

In all University Health Care Components and at

When should Notification about a disclosure of PHI be completed?

In the event of a HIPAA breach or inadvertent disclosure of PHI, contact the Office of General Counsel immediately at 417-836-8507 for guidance.