CUMC Home | Columbia University | Jobs at CUMC | Contact CUMC | Find People
For support: call extension 5-Help (212-305-4357) or email us

CUMC HIPAA Privacy and Security Essentials Training

Training is online at: New Hire HIPAA Privacy and Security Essentials.
Please login with your Columbia UNI and password to take the required course and quiz.
  • New faculty, staff and/or students MUST complete the training within 30 days AND before receiving access to any information systems.
  • All current faculty, staff and students must complete HIPAA training annually.
  • Failure to complete training within the prescribed time period will result in loss of access to information systems such as Columbia email, research and clinical information systems.  In addition, your department administrator, chair and dean will be notified that you have failed to complete the training.
If you experience issues using or completing the training please:
  • Make sure you are using the correct link for training: New Hire HIPAA Privacy and Security Essentials
  • Make sure you are using your Columbia UNI account and its password to log in. This is the same login you would use for programs such as MyColumbia or Courseworks.
  • If your web browser appears to stall or becomes unresponsive during training, close it completely then reopen and re-launch the course. If you see a prompt to resume where you left off choose NOT to resume; you can click to advance through the slides you have already read.
  • If restarting your default web browser does not work, try using an alternate browser (such as Chrome) as a work around:
    1. Rather than clicking a link to start the online training in your computer's default browser, open another browser from your computer's list of programs or apps.
    2. Manually type in or copy and paste the training link into the browser's address bar:
    3. If prompted to resume where you left off, choose NOT to resume (you can click to advance through slides you have already read).
For technical assistance contact the Service Desk at extension 5-HELP (212-305-4357), option 5, or email Please be able to provide any specific error message(s) you may receive when using the online training.

General Training Information

The Columbia University HIPAA Covered Entity, which includes the Columbia University Medical Center, is governed by the HIPAA and HITECH regulations. As part of that governance, all members of the Covered Entity workforce must complete this training on an annual basis. Course content has been updated to include current Privacy and Information Security regulations that govern Columbia, as well as additional information from related Columbia University policies.

Security Essentials Content

Security breaches are caused by the loss or theft of computers and devices, accidental sharing of information and social engineering. It is important that we understand the full impact of a breach to the University (e.g., fines and lawsuits, public embarrassment, loss of valuable assets). This training will help:

  • Define information security breaches, provide examples, explain their root cause and walk you through the steps to prevent them.
  • Explain how to safely use computing devices, create strong passwords and protect information when traveling or working remotely.
  • Explain how to comply with the Email Usage Policy.
  • Explain common threats, such as social engineering, phishing and account compromises.

HIPAA Privacy Content

The HIPAA Privacy Rule applies to the faculty, staff, and students within the covered entity of the University. This training module will provide information related to the Federal Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), including the definition of Protected Health Information (PHI). This training will:

  • Provide information about the HIPAA Privacy requirements including information about the elements of the Privacy Program.
  • Review HIPAA Privacy related policies and procedures.
  • Provide information about the Notice of Privacy Practices (NPP) which summarizes patient rights related to the access, use and disclosure of their information.
  • Provide information about the Columbia Hybrid Entity designation.

| TOP |

Last updated 11/01/2017