Welcome to the Northern Arizona University HIPAA Privacy Program

The Northern Arizona University HIPAA Privacy Program oversees all ongoing activities related to NAU’s implementation of HIPAA policies and procedures and is the office primarily responsible for ensuring NAU’s HIPAA compliance. The NAU Privacy Officer is responsible for developing and implementing relevant procedures, training, and educational materials, and responding to privacy breaches for designated departments and clinics.

HIPAA:

The Health Insurance Portability and Accountability Act of 1996 (HIPAA), the American Recovery and Reinvestment Act of 2009 (ARRA), and all regulations promulgated there under regulate the protection of private health information for individuals. These rules and regulations set standards for the uses and disclosures of all protected health information (PHI) obtained from a covered entity or a business associate of a covered entity.

Hybrid Entity Status:

NAU is a Hybrid Entity and has designated Health Care Components in accordance with 45 CFR § 164.105. These Health Care Components must comply with HIPAA (45 CFR Parts 160, 162, and 164) and all regulations promulgated thereunder, as may be amended from time to time.

Campus Health Services Medical Records Release

If you are looking for a medical records release form to access records at Campus Health Services, please follow the instructions below:

Campus Health Services Web Page

Click into “Messages”

Then “New Messages”

Pick the form that applies to the request and complete. Be sure to include provider name, address, phone (required) and fax number if you are releasing records to a provider. If you are authorizing your parent to access your medical record, free text within the release that you are authorizing access to the items checked within the release form.