Information about HIPAA | Office of Research Compliance | Kent State University

Information about HIPAA

Please Note: the HIPAA Privacy Officer is part of the Compliance and Risk Management Office and must review all projects involving access to PHI.

HIPAA Authorization Template — A sample HIPAA Compliance Authorization document; to be used as a template for the investigator, when needed to document HIPAA Compliance Authorization in a study.

Requirements for a HIPAA Compliance Authorization Form — A document explaining when a HIPAA Compliance Authorization Form may be required.

Business Associate Agreements — A business associate is a person or entity, other than a member of the workforce of the covered entity, who performs functions or activities on behalf of, provides certain services to a covered entity that involve access by the BA to protect health information. This form should be signed by the investigator's Chair or Dean For more information, visit: http://www.hhs.gov/hipaa/for-professionals/covered-entities/sample-business-associate-agreement-provisions/index.html.

Data Use Agreement for Limited Data Set — This is to be used if you plan to send or receive protected health information. This form should be signed by the investigator's Chair or Dean For more information, visit: http://www.hhs.gov/hipaa/for-professionals/faq/limited-data-set