All data and information resources of the SEHD are subject to University of Colorado's IT Secuirty Program policy, APS-6005. Within the policy it describes employee training:

1. Supervisorsshall ensure thatemployeesare adequately trained to fulfill theirIT securityresponsibilities.Employeeswith elevated computing privileges (e.g., server support technicians, user account managers, or webpage administrators) may require additional, specialized training for carrying out theirIT securityresponsibilities effectively.
2. All Universityemployeesincluding associates and other individuals, who require the use of UniversityITresourcesto perform their duties, shall receive initial training and periodic refresher training relevant to theirITsecurityresponsibilities.
3. Supervisorsshall coordinate their localIT securitytraininginitiatives with the campus Information SecurityOfficer.

As applicable, the most secure SEHD data are subject to the UCD Security Management HIPPA policy. As stated on the UCDenver HIPPA Website:

Responsibility for HIPAA compliance is coordinated by the Office of Regulatory Compliance under the direction of the Associate Vice Chancellor for Regulatory Compliance, Dr. Alison D. Lakin, RN, LLB, LLM, PhD.