Contractors who receive or are provided access to university data will use the data solely for the purposes for which they have been contracted. Contractors who are exposed to protected information during the scope of services will use and disclose protected information solely and exclusively for the purposes for which such information, or access to it, is provided in order to perform services. Contractors are fully responsible and liable for all acts, omissions, and work performed by their representatives or subcontractors.
Contractors hired through the UNLV procurement process are bound by the terms and conditions associated with the protection of university data included in the executed contract.
Contractors hired to work specifically with Protected Health Information must complete a HIPAA Business Associate Agreement.
All other contractors must comply with all provisions of the Contractor Confidentiality Agreement. The agreement can be modified with approval of General Counsel.
Employees are responsible for ensuring contractors who receive or are provided access to university data comply with their responsibilities as set forth in this policy.
UNLV HIPAA Units
- Dental School and any associated clinics
- Student Health Center and Pharmacy
- Student Wellness
- Athletic Training Department
- Center for Individual and Family Counseling
- Center for Health Information Analysis
- National Supercomputing Center for Energy and the Environment