Skip to main content Skip to navigation
Washington State University Compliance and Civil Rights

HIPAA & Washington State


The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. The Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. The Rule also gives patients rights over their health information, including rights to examine and obtain a copy of their health records, and to request corrections.

The Privacy Rule is located at 45 CFR Part 160 and Subparts A and E of Part 164.

U.S. Department of Health & Human Services

Revised Code of Washington (RCW)  

Title 70 RCW, Public Health, and Safety

Chapter 70.02 RCW, Medical Records – Health Care Information Access and Disclosure

Chapter 70.03 RCW, Medical Records – Providing Information to Patients

Chapter 50A.25 RCW, Privacy (Title 50A, RCW, Family and Medical Leave)

Title 28B, Higher Education

Chapter 28B.30 RCW, Washington State University

Section 28B.30.350Medical, health and hospital service—Authorized 

Section 28B.30.355Medical, health and hospital service—Leases, contracts, and agreements 

Washington Administrative Code (WAC)

Title 246 WAC – Health, Department of 

Chapter 246-08 WAC, Practice and Procedures


WSU Employee Health Sciences Training  

If you are a student worker or volunteer and unable to access the WSU Training portal, please reach out so that an alternative can be sent directly to you. If you are looking to do departmental training, please reach out so that we may assist. WSU employees required to complete the training must do so through the WSU Training portal. 

Contact the Health Sciences team