Policies & Procedures
| Policy | Description | |
|---|---|---|
| Breach Notification - Notification of Protected Health Information (PHI) Breaches | This policy describes the assessment of possible breaches of PHI and outlines the proper notification procedures aimed to mitigate harm when a breach is determined. |  |
| Compliance Reporting, Inquiries and Investigations | This policy reinforces participation in DHSU’s Compliance Program, requires all individuals to abide by its directives, including reporting concerns of non-compliance, and provides the framework for the inquiry, investigation and follow up of such reports. | |
| Compliance Training | This policy outlines the Compliance Training requirements and follow up processes for SUNY Downstate Health Sciences University's workforce. | Currently under revision |
| Complying with the Deficit Reduction Act of 2005: Detection & Prevention of Fraud, Waste & Abuse | This policy provides information regarding Federal & State statutes pertaining to false claims and statements, whistleblower protections under these laws and DHSU's policies and procedures for detecting and preventing fraud, waste and abuse. | |
| HIPAA Compliance | For Policies & Procedures relevant to UHB and UPB HIPAA Compliance, please visit the HIPAA Website. | |
| Record Retention & Disposition | Information regarding the retention and disposition of official records of the campuses
of the State University of New York: SUNY System Policy |
|
| The following link outlines, by record type, the minimum retention requirements: SUNY System Schedule for Health Information |
||