Skip to Content Skip to Local Navigation Skip to Global Navigation
Stanford Medicine Technology & Digital Solutions

United for Better Health
Stanford Medicine

Explore Stanford Medicine

  • Health Care
    • Find a doctor

    • Adult-care doctor
    • Pediatrician or pediatric specialist
    • Obstetrician
    • Clinics & Services

    • Adult care
    • Pediatric care
    • Obstetrics
    • Clinical trials
    • Locations

    • Stanford Health Care
    • Stanford Children's Health
    • Emergency Department
    • Dial 911 in the event of a medical emergency

    Explore Health Care

    Learn how we are healing patients through science & compassion

    Back
  • Research
    • Basic science departments
    • Clinical science departments
    • Institutes
    • Research centers
    • See full directory
    • Research Resources

    • Research administration
    • Academic profiles
    • Clinical trials
    • Funding opportunities
    • See all
    • Professional Training

    • Postdoctoral scholars
    • Clinical research fellows

    Research News

    Stanford team stimulates neurons to induce particular perceptions in mice's minds

    Stanford team stimulates neurons to induce particular perceptions in mice's minds

    Explore Research

    Learn how we are fueling innovation

    Back
  • Education
    • MD program
    • PA Programs
    • PhD programs
    • Masters programs
    • Continuing Medical Education
    • Postdoctoral scholars
    • Residencies & fellowships
    • High School & Undergraduate Programs
    • See all
    • Education Resources

    • Academic profiles
    • School Administration
    • Basic science departments
    • Clinical science departments
    • Alumni services
    • Faculty resources
    • Diversity programs
    • Lane Library
    • Student resources

    Education News

    Students from far and near begin medical studies at Stanford

    Students from far and near begin medical studies at Stanford

    Explore Education

    Learn how we empower tomorrow's leaders

    Back
  • Give

    Support Stanford Medicine

    • Support teaching, research, and patient care.

    • Ways to give
    • Why giving matters
    • Make a gift online

    Support Children's Health

    • Support Lucile Packard Children's Hospital Stanford and child and maternal health

    • Ways to give
    • How your gift helps
    • Make an online gift
    Back
  • About
    • About us
    • News
    • Contacts
    • Maps & directions
    • Leadership
    • Vision
    • Diversity
    • Global health
    • Community engagement
    • Events
    • How you can help

    Stanford School of Medicine

    Stanford Health Care

    Stanford Children's Health

    Back
  • Site Search
    Submit Search Query

Information Privacy & Security: Quick Reference Guide

Overview

All of us share responsibility for protecting Stanford systems and data from unauthorized access.

See below for a summary of resources, responsibilities, and important contacts: to help you keep track of your data security obligations, and to give you the answers to any questions you may have.

Key Resources

  • University Privacy Office — https://privacy.stanford.edu
  • Information Security Office — https://security.stanford.edu
  • Risk Classifications — https://dataclass.stanford.edu
  • Minimum Security Standards — https://minsec.stanford.edu
  • Verifiable Encryption — https://encrypt.stanford.edu
  • Information Privacy & Security Quick Reference Guide 

Roles and Responsibilities

Faculty & Staff Responsibilities

  1. Understand the Low, Moderate, and High Risk Data classifications and perform required attestations - https://dataclass.stanford.edu, https://med.stanford.edu/datasecurity/attestation.html
     
  2. Keep your laptop/desktop software up to date — https://patching.stanford.edu
     
  3. Verifiably encrypt all of your devices used for Stanford business [this includes keeping them locked with a passcode] — https://encrypt.stanford.edu
     
  4. Request a Data Risk Assessment for new systems handling High Risk Data — https://dra.stanford.edu
     
  5. Back up your laptop/desktop — https://med.stanford.edu/irt/security/alldevices/backups.html
      
  6. Watch the information security awareness video — https://accounts.stanford.edu/manage
      
  7. Be vigilant for phishing and other social engineering schemes — https://phishing.stanford.edu
      
  8. Report lost or stolen devices to the University Privacy Office (look for the button marked "Report a Privacy Incident") — https://privacy.stanford.edu
      
  9. Be familiar with security policies and HIPAA regulations — https://security.stanford.edu
      
  10. Use Secure: Mail to send High Risk Data from Stanford email.  Add secure: anywhere in the subject line – don't forget to put the colon (:) after "secure" and don't include High Risk Data within the subject itself.
      
  11. Use Medicine Box for PHI data storage and collaboration — https://med.stanford.edu/box.html
      
  12. Leaving Stanford? — https://med.stanford.edu/irt/security/security/help/leaving-stanford.html, https://departingpersonnel.stanford.edu


Department Management: Director of Finance and Administration (and/or designee) Responsibilities

Perform periodic monitoring and oversight to ensure faculty and staff roles and responsibilites are performed in compliance with policies and regulations.
 

Penalties for non-compliance:

Violations may result in network removal, access revocation, corrective action, and/or civil or criminal prosecution. Violators may be subject to disciplinary action up to and including dismissal or expulsion, pursuant to campus policies, collective bargaining agreements, codes of conduct, or other instruments governing the individual's relationship with the University. Recourse shall be available under the appropriate section of the employee's personnel policy or contract, or by pursuing applicable legal procedure.

Policies and Regulations

     • Administrative Guide: Information Security

     • Risk Classifications

     • Minimum Security Standards

     • Encryption

     • Third-Party Security Requirements

     • Data Sanitization

     • Regulatory: HIPAA

     

Quick Links

On This Page
United for Better Health
  • Desktop Computing
    • IT Support
      • Requesting IT Support
      • New Computer Setup
      • Printer Setup
      • Print Resources
      • Maintaining Your Computer
      • Hardware Support
      • Software Support
      • Server Support
    • Recommended Software
    • Computer Recommendations
    • Mobile Devices: Apple
    • Printer Recommendations
    • Using Clinical Applications & Data
    • Network Access
      • Policies
      • Off-campus Access
      • Gaining Access to the Network
      • Guest Access
      • How to find the Hardware Address of Your Device
      • Wireless Access
    • Jamf Endpoint Management (12/1/2020)
      • Jamf at SoM FAQ
    • Computer Health
  • Research Technology
  • Web Services
    • Websites
  • Application Services
    • Internal
  • Business Analytics
  • Infrastructure Services & Communications
    • Firewalls
    • Desk & Mobile Phones
      • VoIP Transition
      • VoIP Deployment Schedule
    • Web Conference & Video
    • Networking
      • Network Details, Performance, & Testing
      • 802.11b Wireless Coverage
      • Off-Campus Network Access
    • Server Management
      • System Administration
      • Basic Hosting
      • Service Level Agreement
      • Facilities: Data Center
      • Customer Status Report
    • Cloud Infrastructure
    • Application & Database Management
    • TDS Infrastructure Security Services
  • Information Security Services
    • I Need Help!
      • FAQ: Information Security Services
      • I Have a Compliance Issue
      • New to Stanford?
      • Leaving Stanford?
    • Equipment and Device Security
      • Securing Other Devices
      • Backup My Data
      • USB External Drives and Encryption
      • Unsupported Systems
      • MDM (Mobile Device Management)
      • Encrypted USB Enforcement Program
    • Handling Stanford Information
      • Research & Security
      • Share, Send & Store
    • Connecting Securely: Secure Networks and VPN
      • Stanford LAN Extension (SLE)
      • VPN Service
      • Unsupported Systems
      • Protected Networks
      • Firewalls
    • Good Practices for Everyday Security
      • Passwords and Passphrases
      • Security Quick Reference Guide
  • About Us
    • The TDS Team
    • Maps & Directions
      • Porter Drive
    • Key Contacts
  • Help
  • Administrative Technology
    • Guide to Administrative Systems at Stanford
    • LPCH Admin Guide to Managing Stanford Calendars
    • School of Medicine Business Intelligence Program
    • Guide to Systems By Topic
    • Acquiring or Developing a New Administrative System
    • Request a Consultation for Administrative Systems
    • Scheduled Standard Reporting
    • Scheduled Standard Reporting: Fixed Schedul
  • Collaboration Tools
    • Collaboration Tools
  • Extended Operations

Technology & Digital Solutions

Stanford Medicine

News

Events

Careers

Contact

Health Care

Stanford Health Care

Stanford Children's Health

Stanford School of Medicine

About

Contact

Maps & Directions

Careers

Basic Science Departments

Clinical Science Departments

Academic Programs

Vision

Find People
Visit Stanford
Search Clinical Trials
Give a Gift
©2023 Stanford Medicine
  • Privacy Policy
  • Terms of Use
  • See us on Facebook
  • See us on Twitter
  • Stanford University
  • Stanford School of Medicine
  • Stanford Health Care
  • Stanford Children's Health
  • Stanford Health Care Tri-Valley
  • Stanford Medicine Partners