Skip to main content Skip to navigation
Washington State University Compliance and Civil Rights

Polices, Templates and Assessments

Executive Policy: HIPAA Hybrid Entity 

Policy is in final stages of review and will be published soon. 

Policy Templates

These templates are for WSU Departmental use as the groundwork for departmental polices regarding HIPAA and Protected Health Information – Departments needing assistance or that have questions are encouraged to reach out.

Templates coming soon 

Risk Assessment

Multiple Risk Assessments are available for use ranging from isolated incidents to yearly departmental review.

Additional tools are being reviewed by the Health Sciences Compliance Committee and will be posted once finalized. 

Business Associate Agreements

WSU Departments who are considered covered entities must ensure that HIPAA Business Associate Agreements (BAA’s) are in place and up to date with partners regarding Protected Health Information (PHI) security as well as HIPAA compliance.

BAA’s need to go through the WSU Contracts process and procedure as outlined in BPPM 10.11 

WSU Business Associate Decision Tree

WSU – Business Associate Agreement Decision Tree PDF