SEHD Wiki

A source for policies, procedures, handbooks and other resources from the School of Education and Human Development

User Tools

Site Tools

You are here: Welcome to the SEHD Wiki! » SEHD Policies and Procedures » Data Privacy Policies » Transmitting Sensitive Information Securely including Faxing and Email
policy:data_privacy:transmitting_information

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
policy:data_privacy:transmitting_information [2019/03/28 19:32] tonyromeropolicy:data_privacy:transmitting_information [2019/06/13 17:28] (current) tonyromero
Line 1: Line 1:
 ====== Transmitting Sensitive Information Securely including Faxing and Email ====== ====== Transmitting Sensitive Information Securely including Faxing and Email ======
  
-\\ +===== Applicable University of Colorado Denver Policies =====
-a. Email and Webmail Stay Secure https://www1.ucdenver.edu/offices/office-of-information-technology/software/how-do-i-use/email-and-webmail\\ +
-b. HIPAA Policy 7.1 Safeguards https://www1.ucdenver.edu/docs/default-source/offices-oit-documents/it-related-policies/hipaa-7-1-safeguards.pdf?sfvrsn=48bb7b8_6+
  
-===== Sub Heading =====+==== University of Colorado IT Security Program Policy ====
  
-:!: **Important: **Lorem ipsum dolor sit amet, consectetur adipiscing elitAenean eu eleifend orci, vel scelerisque nisiPraesent finibus euismod auctor. Cras leo massa, auctor eu cursus nec, volutpat eu sapien. Cras mollis euismod diam, eu viverra elit ornare sit amet. Mauris vel dolor vel magna molestie eleifend tempor vitae massa. Phasellus at lacus a libero pharetra imperdiet vitae sed lorem. Pellentesque eu dictum sem.+All data and information resources of the SEHD are subject to University of Colorado's IT Security Program policy, [[https://www.cu.edu/ope/aps/6005|APS-6005]]The policy states:
  
-**Note:** Lorem ipsum dolor sit ametconsectetur adipiscing elit. +> If Highly Confidential information is stored on a workstation or mobile computing device or transmitted to an external network or organizationIT resource users shall encrypt or adequately protect that information from disclosure.
-===== Headline =====+
  
-Lorem ipsum dolor sit amet, consectetur adipiscing elit. Aenean eu eleifend orci, vel scelerisque nisi. Praesent finibus euismod auctor. Cras leo massa, auctor eu cursus nec, volutpat eu sapien. Cras mollis euismod diam, eu viverra elit ornare sit amet. Mauris vel dolor vel magna molestie eleifend tempor vitae massa. Phasellus at lacus a libero pharetra imperdiet vitae sed lorem. Pellentesque eu dictum sem.+==== University of Colorado Denver HIPPA Policy ====
  
-----+The most secure SEHD data are subject to the [[http://www.ucdenver.edu/research/Research Administration Documents/7.1 Safeguards.pdf|UCD Safeguards HIPPA policy]]. The policy discusses transmitting information via email, fax, and internet.
  
-===== Various Underlines =====+Email:
  
-Lorem ipsum dolor sit ametconsectetur adipiscing elit. Aenean eu eleifend orcivel scelerisque nisiPraesent finibus euismod auctorCras leo massaauctor eu cursus necvolutpat eu sapien. Cras mollis euismod diameu viverra elit ornare sit ametMauris vel dolor vel magna molestie eleifend tempor vitae massa. Phasellus at lacus libero pharetra imperdiet vitae sed loremPellentesque eu dictum sem.+> If PHI must be transmitted via e-mailand the e-mail recipient is part of the internal e-mail systemi.eUCDUCHCHCor UPI, the e-mail does not need to be encrypted, given that the network is privateIf the e-mail must be sent across the Internet to either patient or another entity covered by HIPAA, encryption should be applied to the e-mail messagePersonal e-mail accounts (ex. AOL, yahoo) may not be used to transmit e-mail containing PHI, due to the fact that these e-mail systems are not encrypted.
  
-===== List Items =====+Fax:
  
-  - One +> Fax machines used for transmitting or receiving PHI must be in locations secured from the general public. Before sending out faxesensure that the destination phone number is correct and include appropriate cautions and disclaimers on the fax cover sheet. Faxes should always have cover sheets.
-  - something +
-  - three +
-  - eleven +
-  - five hundred((I'm adding a footnote to this list itemit will show up at the bottom.))+
  
-Lorem ipsum dolor sit amet, consectetur adipiscing elit. Aenean eu eleifend orci, vel scelerisque nisi. Praesent finibus euismod auctor. Cras leo massa, auctor eu cursus nec, volutpat eu sapien. Cras mollis euismod diam, eu viverra elit ornare sit amet. Mauris vel dolor vel magna molestie eleifend tempor vitae massa. Phasellus at lacus a libero pharetra imperdiet vitae sed lorem. Pellentesque eu dictum sem.+Internet:
  
-----+> Since the Internet is inherently insecure and there is a risk of data being intercepted, PHI shall not be transmitted over the Internet, including Internet e-mail, unless the data is encrypted. Industry-accepted methods of encrypting Internet traffic include, but are not limited to, secure sockets layer (SSL) encryption, virtual private networking (VPN), secure Citrix software, and secure shell (SSH).
  
-==== Slightly Lower Header ==== +Please visit OIT's email information page to learn more [[https://www1.ucdenver.edu/offices/office-of-information-technology/software/how-do-i-use/email-and-webmail|https://www1.ucdenver.edu/offices/office-of-information-technology/software/how-do-i-use/email-and-webmail]]
- +
-|We can also use tables|for describing various policies| +
-| | | +
-| | | +
- +
-\\+
  
  
policy/data_privacy/transmitting_information.1553801550.txt.gz · Last modified: 2019/03/28 19:32 by tonyromero