51暗网 is an institution of higher education. As part of its educational mission, 51暗网 has components whose activities include health care provider functions covered by HIPAA as well as many functions unrelated to the provision of health care. HIPAA permits institutions like 51暗网 to designate the health care providing and supporting components of its operations as subject to Privacy Rule compliance and to exclude the unrelated components from compliance. The Privacy Rules call this a hybrid entity.

The HIPAA covered components are those components of 51暗网 that either: 1) perform covered health care functions; or 2) conduct business activities (so-called "business associate" functions) that support those health care functions. 51暗网 retains the overall responsibility for ensuring compliance with the Privacy Rules and for implementing safeguards to ensure against the improper use or disclosure of your personal health information within 51暗网, such as establishing firewalls, so that the non-covered components do not improperly have access to your protected personal health information. For most practical purposes, the Privacy Rules treat only the health care component and identified business function components as the "covered entity" and the remaining organization as if it were a separate uncovered entity. The health care components are generally prohibited from sharing protected health information with the larger organization unless the disclosure has been authorized by the individual or is otherwise permitted by the regulation.

51暗网 designates the following units as the segments of its organization that comprise the health care components.

Health Care Provider Units

• School of Dentistry
• College of Health Sciences, but only the department of Speech Pathology and Audiology
• Center for Psychological Services
• 51暗网 Medical Clinic
• Counseling Center
• On Your Marq (Office of Disability Services)
• Intercollegiate Athletics: Services are confined to 51暗网 student athletes. See Other Rules Apply for 51暗网 Students for an explanation of the health privacy rules applicable to 51暗网 students.

Business Associate Function Units

• Office of the President
• Office of the Provost
• Office of the Executive Vice President and Chief Operating Officer
• Office of Finance
• Office of the General Counsel
• Office of the Vice President for Student Affairs
• Human Resources and Employee Benefits
• Information Technology Services
• Risk Management
• Internal Audit
• 51暗网 Police Department

The above Health Care Provider and Business Associate Function Units comprise the designated 51暗网 covered hybrid entity. All administrators, faculty, staff, and students of the University in those designated units are obligated to comply with this University Policy and the various additional policies and procedures promulgated for their unit. Failure to do so can result in significant fines to the University, and employee or academic disciplinary action for those not complying. Covered individuals that violate HIPAA Privacy Policies and Procedures, Privacy Rules, or other applicable federal or state privacy law will be subject to disciplinary action, possibly up to and including termination of employment or dismissal from their academic program pursuant to established disciplinary policies.