2019-01: Acceptable Use, UConn Health

2003-04: Business Associate Agreements

2018-01: Compliance with eHealth Exchange Requirements

• Guidelines/Procedures for Compliance with eHealth Exchange Requirements

2003-31: Data Classification and Use – Replaced by 2019-01 Acceptable Use

2011-01: Data Encryption, Authentication and Physical Safeguards

2011-04: Electronic Communication of Confidential Data

• Guidelines for Outlook Email Encryption

2018-02: Fraud, Waste and Abuse Prevention and Education in Healthcare

2003-07: HIPAA Privacy and Security Training of Workforce, UConn Health Policy on – Deleted and replaced by University-wide Compliance Training Policy

2005-04: HIPAA Security Facility Access Control, UConn Health Policy on – Deleted 3/1/21 and replaced by IT Physical Security

2011-02: Information Security Acceptable Use – Replaced by 2019-01 Acceptable Use

2005-03: Information Security Administration

• Information Security Administration Procedures

2005-10: Information Security Endpoint Protection and Software Update

2005-08: Information Security Risk Assessment

2014-08: Information Security – Wireless Network

2005-07: Information System Activity Review

2005-06: Information Systems Business Continuity and Disaster Recovery

2007-07: Information Technology Computer/Electronic Use – Replaced by 2019-01 Acceptable Use

2021-01: Information Technology Physical Security

2008-03: Mobile Computing Device (MCD) Security

2020-08 Mobile Device Management

2006-14: Purchase/Development of IT Institutional Systems

2011-03: Systems Access Control

2003-09: Responding to Breaches of Privacy or Security of Protected Health Information (PHI) and/or Personal Information

• Procedures for Responding to Breaches of Privacy or Security of Protected Health Information (PHI) and/or Personal Information

2003-45: Use of Spam Prevention Technology – Policy Deleted 6/3/19