Skip Navigation

Privacy Violation Policy

The University of Michigan Health System (UMHS) is committed to fairly and consistently addressing violations of UMHS privacy and security standards, policies and procedures.

The links and documents on this page are intended as information and tools to be used by UMHS leaders and UMHS Human Resources Business Partners to manage cases and situations involving a violation of privacy or security of protected health information (PHI) or other sensitive information.  Any questions about the content or interpretation of any information should be directed to your Human Resources Business Partner.

UMHS Policy 01-04-390 Discipline for Violations of Privacy or Security of Protected Health Information (PHI) or Other Sensitive Information for all UMHS Workforce

Education Roll Out Powerpoint presentation on the new policy summarizing the changes to the law and the key components of Policy 01-04-390

Privacy Violation Procedures Outlines the basic process to be followed when a breach of privacy has occurred, beginning with reporting the breach and ending in any disciplinary action to be taken.

Privacy Violation Supervisor Tips Helpful tips to avoid privacy violations in the workplace.

Privacy Violation Discipline Grid

Privacy Violation FAQ's