Back to Top Skip to main content

Privacy and Civil Liberties

The DHA Privacy and Civil Liberties Office is responsible for safeguarding Military Health System (MHS) individuals and information by administering compliance programs. In this section of the site, you can find information about several important programs and functions, including:

Protection of personally identifiable and protected health information (PII/PHI) serves eligible beneficiaries, human research subjects, and the DHA workforce.

You also may be interested in...

Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Compliance in DoD Health Care Programs

Policy

This issuance, in accordance with the authority in DoD Directive 5124.02, establishes policy and assigns responsibilities for; DoD compliance with federal law governing health information privacy and breach of privacy; Integrating health information privacy and breach compliance with general information privacy and security requirements in accordance with federal law and DoD issuances; Health information technology, system interoperability, and exchange of electronic health information, in relation to federal law governing health information privacy and breach; and DoD contracting and procurement activities in relation to federal law governing health information privacy and breach.

Implementation of the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule in DoD Health Care Programs

Policy

This 6025.18 DoD Manual was issued in accordance with the authority in DoD Directive 5124.02. It also implements the policy in DoD Instruction (DoDI) 6025.18, and assigns responsibilities and procedural standards for protecting personally identifiable health information in accordance with parts 160 and 164 of title 45, Code of Federal Regulations (CFR).

PGI 224.1-90: Personally Identifiable Information (PII), Protected Health Information (PHI), and Federal Information Requirements

Policy

This PGI provides standard language that shall be included in all purchased and non-purchased care solicitations and contracts where the contractor’s performance involves access to PII/PHI (unless those solicitations and contracts incorporate the TRICARE Manuals in their entirety, in which case this PGI does not apply).

DHA Privacy Office Standard Contract Language

Form/Template
7/6/2017

This Section addresses the Contractor’s requirements under The Privacy Act of 1974 (Privacy Act), The Freedom of Information Act (FOIA), and The Health Insurance Privacy and Accountability Act (HIPAA) as set forth in applicable statutes, implementing regulations and DoD issuances.

Recommended Content:

Privacy and Civil Liberties | DHA Privacy Contract Language

DHA Standard Contract Language

Policy

This Section addresses the Contractor’s requirements under The Privacy Act of 1974 (Privacy Act), The Freedom of Information Act (FOIA), and The Health Insurance Privacy and Accountability Act (HIPAA) as set forth in applicable statutes, implementing regulations and DoD issuances.

Surgical Scheduling System

Form/Template
9/16/2016

PIA summary for Surgical Scheduling System.

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

Decision Tree Matrix for Contracts with PII/PHI

Fact Sheet
9/6/2016

Personally Identifiable Information (PII), Protected Health Information (PHI), and Federal Information Requirements

Recommended Content:

Privacy and Civil Liberties | DHA Privacy Contract Language

Zeiss FORUM

Form/Template
8/12/2016

Zeiss FORUM PIA summary

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

Department of Defense Consolidated Cancer Registry (CCR)

Form/Template
7/21/2016

Department of Defense Consolidated Cancer Registry (CCR) System PIA summary

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

Military Health System Data Repository

Form/Template
6/23/2016

Military Health System (MHS) Data Repository (MDR) PIA

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

Defense and Veterans Eye Injury and Vision Registry

Form/Template
6/22/2016

PIA for the Defense and Veterans Eye Injury and Vision Registry (DVEIVR)

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

Surgery Scheduling System (S3)

Form/Template
6/20/2016

PIA for the Surgery Scheduling System S3

Recommended Content:

Privacy and Civil Liberties | Privacy Impact Assessments

DHA Form 61, Privacy Threshold Analysis (PTA)

Form/Template
3/31/2016

The purpose of the PTA is to identify if a system contains personally identifiable information (PII); and determine whether a Privacy Impact Assessment (PIA) is required, whether a System of Records Notice (SORN) is required, and if any other privacy requirements apply to the information system.

Recommended Content:

Privacy Impact Assessments | Privacy and Civil Liberties

DoD Instruction 8580.02: Security of Individually Identifiable Health Information in DoD Health Care Programs

Policy

This instruction establishes policy and assigns responsibilities for security of individually identifiable health information created, received, maintained, or transmitted in electronic form (referred to in this instruction as “electronic protected health information (ePHI)”).

<< < 1 > >> 
Showing results 1 - 14 Page 1 of 1

DHA Address: 7700 Arlington Boulevard | Suite 5101 | Falls Church, VA | 22042-5101

Some documents are presented in Portable Document Format (PDF). A PDF reader is required for viewing; Download a PDF Reader or learn more about PDFs.