Data Privacy & Compliance Office

The Office of Data Privacy and Compliance at Statewide provides ongoing guidance, advice, training and  education programs to maintain UA’s compliance and improve UA’s understanding of related laws and regulatory requirements. 

---

 

Here are some of the regulatory compliance areas handled by the Data Privacy & Compliance Office:

• Family Educational Rights and Privacy Act (20 U.S.C. § 1232g) 

• Freedom of Information Act (5 U.S.C. § 552) (FOIA) 

• Gramm-Leach-Bliley Act (15 U.S.C. §§ 6801, et seq.)

• Payment Card Industry Data Security Standards 

• Health Insurance Portability and Accountability Act (Pub. Law No. 104-191 § §262,264: 45 C.F.R. § §160-164)) 

• Health Research Data Statute (42 U.S.C. § 242m) 

• HITECH Act (Title XIII of Division A and Title IV of Division B of the American Recovery Consumer Financial Protection Act of 2010 (Pub. L. No. 111-203, 124 Stat. 1376)

• Criminal Justice Information Systems (42 U.S.C. § 3789g)

• Privacy Act of 1974 (5 U.S.C. § 552a)

• Privacy Protection Act (42 U.S.C. § 2000aa) 

• Right to Financial Privacy Act (12 U.S.C. § 3401, et seq.) 

• U.S.A. Patriot Act (Pub. L. 107-56) (bill extending three anti-terrorism authorities signed 02/25/11) 

• General Data Protection Regulation Act