Confidentiality, Privacy & Security of Information
The following compliance resources offer expertise, resources, policies & procedures and training to the Duke community related to:
Confidentiality of Student Records
Confidentiality of student records is regulated by FERPA, the Family Education Rights and Privacy Act and coordinated by the Duke Registrar's Office.
Confidentiality & Security of Protected Health Information / Patient Records
Confidentiality & security of protected health information / patient records is regulated by the Health Insurance Portability & Accountability Act (HIPAA.)
North Carolina Identity Theft
North Carolina identity theft issues are managed through the Duke IT Security Office.
Duke's Information Security Office serves the University by assisting with:
- Information Security regulatory compliance
- Information Security education
- Information Security services and information
For Campus: Information Technology Security Office
For Duke Med: Duke Health Technology Solutions Information Security Office
Social Security Number Policy
In addition to any regulatory requirements, Duke’s Social Security Number (SSN) policy requires approval by the Executive Vice President and the Chief Information Officer for the collection, storage or usage of SSNs.