University Information Technology Services

Services and Support

• Accounts and Passphrases
  • Overview
    • Eligibility
    • Glossary
    • Logging in at IU
    • Your responsibilities as a computer user at IU
  • Common tasks and troubleshooting
    • Accounts
    • Account termination
    • IU Address Book listings
    • Passphrases
    • Quotas
  • Types of accounts
    • Email
    • File storage
    • Instructional database
    • Logging in at IU
    • Printing at IUB
    • Printing at IUPUI
    • Research systems
    • Web space
• Email
  • Overview
    • Email at each IU campus
    • Email glossary
    • IU email systems
  • Common Tasks and Troubleshooting
    • Email policies
    • Finding addresses
    • Junk email
    • Organizing email
    • Problems sending or receiving email
    • Reading email
    • Sending email to groups of people
    • Using attachments
    • Viruses
• Internet, Phone, & Video Connections
  • Internet Connections
    • Connecting to the ADS Domain
    • Current IU network status
    • Ethernet
    • Ethernet in campus housing
    • Glossary
    • GreekNet
    • Mobile computing
    • Outside ISPs
    • Registering your computer
    • Using dial-up
    • VPN
    • Wireless
  • Telephone services
    • Telephone equipment
    • Telephone features and instructions
    • Operator services
    • Rates and billing
    • Regional campus technical support
    • Support, repair, and troubleshooting
    • Telephone services in campus housing
    • Wireless and cellular services
  • Video
    • Purchasing
    • Resources
    • Streaming
    • Videoconferencing
• Labs, Classrooms, and Instructional Resources
  • Labs
    • Adaptive technology
    • Available software and hardware
    • Employment
    • Getting help
    • Locations, hours, and available seats
    • Multimedia tools in the Information Commons
    • Printing
    • Reservations
    • Software installation requests
    • Standards and practices
  • Classrooms
    • Classrooms and equipment
    • Classroom recording
    • Facility and system design consulting
    • Getting help
    • Software installation requests
    • Videoconferencing facilities
  • Instructional resources
    • Course development and management tools
      • Assessment tools
      • Collaboration tools
      • Course management tools
      • Creating your own instructional media/web materials
      • Data and web server access for instruction
    • Materials, media, and assistance for instructors
      • Resources to keep teaching
      • Funding for instructional technology projects
      • Geospatial data
      • Instructional strategies
      • Library technology resources
      • Media collections
      • Media duplicating
      • One-on-one consulting
      • Special resources for your students
  • Accessibility
    • Adaptive Technology and Accessibility Centers
    • Adaptive technology at IU
    • Oncourse accessibility
    • ADA Enabled Labs
• Software and Hardware
  • Software
    • IUware Online
    • Obtaining and licensing software
    • Requesting software on UITS shared systems
    • Resources for help with software
    • Software on campus
  • Hardware
    • Buying hardware
    • Disposing of old hardware
    • Hardware on campus
    • Hardware repairs
    • Intelligent Infrastructure
    • Removable storage media
• Training and Workshops
  • Certification and testing
  • Instructor-led training
  • Request training
  • Self-study training
  • Seminars, lectures, and users' groups
  • Training in adaptive software
• Web Publishing
  • Central hosting
  • Online instructional resources
  • Podcasting
  • Policies
  • Resources and information
  • Web development tools
  • Web security and access
• Information Systems
  • Decision Support Services
  • Enterprise applications
  • Enterprise Web Technical Services
  • Geographic Information Systems
  • Intelligent Infrastructure
• Scholarly Cyberinfrastructure
• Security and Policies
  • Security
    • Reporting a technology incident
    • Security recommendations
    • Security tools
    • Trustees Security Resolution
    • UISO security bulletins
  • Policies
    • Copyright and fair use
    • E-commerce
    • Institutional and personal information
    • Reporting a technology incident
    • Technology policies at IU

Quick Links

• Ask for Help
• Knowledge Base
• Services Directory
• Staff List
• IT News and Events
• Notices and Alerts

What is electronic protected health information (ePHI)?

According to the US Department of Health and Human Services, electronic protected health information (ePHI) is any protected health information (PHI) that is created, stored, transmitted, or received electronically. All protected health information is subject to federal Health Insurance Portability and Accountability Act (HIPAA) regulation, which refers to any information that identifies an individual (usually a patient) and relates to at least one of the following:

• The individual's past, present, or future physical or mental health
• The provision of health care to the individual
• Past, present, or future payment for health care

Information that can identify an individual includes either the individual's name or any other information that could enable someone to determine the individual's identity.

Data are "individually identifiable" if they include any of the 18 types of identifiers for an individual or for the individual's employer or family member, or if the provider or researcher is aware that the information could be used, either alone or in combination with other information, to identify an individual. These identifiers are:

• Name
• Address (all geographic subdivisions smaller than state, including street address, city, county, or ZIP code)
• All elements (except years) of dates related to an individual (including birth date, admission date, discharge date, date of death, and exact age if over 89)
• Telephone numbers
• FAX number
• Email address
• Social Security number
• Medical record number
• Health plan beneficiary number
• Account number
• Certificate/license number
• Any vehicle or other device serial number
• Device identifiers or serial numbers
• Web URL
• IP address
• Finger or voice prints
• Photographic images
• Any other characteristic that could uniquely identify the individual

In research, it is often sufficient to make the information more general (instead of being removed altogether) for de-identification (e.g., by replacing the birth date with an age range).

The "e" in ePHI

Electronic protected health information (ePHI) includes any medium used to store, transmit, or receive PHI electronically. The following and any future technologies used for accessing, transmitting, or receiving PHI electronically are covered by the HIPAA Security Rule:

• Media containing data at rest (storage)
  
  
  • Personal computers with their internal hard drives used at work, home, or traveling
  • External portable hard drives, including iPods and similar devices
  • Magnetic tape
  • Removable storage devices, such as USB memory sticks, CDs, DVDs, and floppy disks
  • PDAs and smartphones
  
  
• Data in transit, via wireless, Ethernet, modem, DSL, or cable network connections
  
  
  • Email
  • File transfer

• About UITS
• Contact UITS
• Job Opportunities
• News Room
• Rates and costs
• Site map
• Comments

• Copyright 2005-2010, The Trustees of Indiana University
• Copyright Complaints
• Last updated: Mon, 30 Jan 2012