The purpose of this policy and procedure is to confirm Pacific University’s compliance with federal HIPAA regulation 45 CFR §164.308(a)(8), which directs Pacific University to perform periodic evaluations of security safeguards, especially in response to environmental or operational changes, and are necessary to re-affirm that ePHI continues to be protected in accordance with the HIPAA Security Regulations. This policy reflects Pacific University’s commitment to comply with such regulations.

PUNID required to review this policy.

Updated January 2025.