State and Federal Regulations

Health Insurance Portability and Accountability Act of 1996

HIPAA stands for the Health Insurance Portability and Accountability Act of 1996. Congress passed this landmark law to provide consumers with greater access to health care insurance, to protect the privacy of health care data, and to promote more standardization and efficiency in the health care industry.

To learn more, please read more about HIPAA.

Oregon Genetic Privacy Law

The State of Oregon has laws to protect the genetic privacy of individuals. These laws give patients the right to refuse to have their health information or biological samples used for research. A biological sample may include a blood sample, urine sample or other materials collected from the body.

For more information, please read more about genetic privacy.

Identity Theft Protection Act

Personal information is a valuable commodity. The Oregon Consumer Identity Theft Protection Act of 2007 provides consumers with more tools to protect themselves against identity theft.

To learn more, please read more about the identity theft protection act.

Federal Information Systems Security Act of 2002

FISMA establishes responsibility and accountability for the security of all federal agency information systems. 

To learn, please read about FISMA.

Title 21 Code of Federal Regulations Part II

21 CFR Part II is the part of the Code of Federal regulations that establishes the United States Food and Drug Administration regulations on electronic records and electronic signatures. 

For information on OHSU's certification of intent to comply with federal regulations on electronic records and electronic signatures, please read more about Title 21 CFR part II.

NIST 800 Series documents

The National Institute of Standards and Technology (NIST) is a unit of the U.S. Department of Commerce. Its 800 Series is a set of documents that describe computer security policies, procedures and guidelines set by the U.S. government.

Search NIST publications at the Computer Security Resource Center.

NIST 800 Series documents

The National Institute of Standards and Technology (NIST) is a unit of the U.S. Department of Commerce. Its 800 Series is a set of documents that describe computer security policies, procedures and guidelines set by the U.S. government.

You can search NIST publications at the Computer Security Resource Center here.