Skip to main content

Military Health System

Test of Sitewide Banner

This is a test of the sitewide banner capability. In the case of an emergency, site visitors would be able to visit the news page for addition information.

Breach Prevention and Response

What is a Breach?

According to the Department of Defense, a breach of personal information occurs when the information is lost, disclosed to, accessed by, or potentially exposed to unauthorized individuals, or compromised in a way where the subjects of the information are negatively affected.

Breach Reporting

The Defense Health Agency Privacy and Civil Liberties Office coordinates breach reporting within the Military Health System. Email us if you have questions about breaches or breach reporting within the MHS.

Guidance tools for breach reporting:

You also may be interested in...

Aug 2, 2022


The Health Information Technology for Economic and Clinical Health Act, abbreviated the HITECH Act, was enacted under Title XIII of the American Recovery and Reinvestment Act of 2009.

  • Identification #: N/A
  • Type: Guidelines
Mar 6, 2020

DoDI 5200 48 Controlled Unclassified Information

This issuance establishes policy, assigns responsibilities, and prescribes procedures for CUI throughout the DOD in accordance with Executive Order (E.O.) 13556; Part 2002 of Title 32, Code of Federal Regulations (CFR); and Defense Federal Acquisition Regulation Supplement (DFARS) Sections 252.204-7008 and 252.204-7012. It also establishes the ...

  • Identification #: DODI 5200.48
  • Type: Instructions
Mar 13, 2019

Health Insurance Portability and Accountability Act Privacy Rule in DOD Health Care Programs

This issuance, in accordance with the authority in DOD Directive 5124.02, establishes policy and assigns responsibilities for DOD compliance with federal law governing health information privacy and breach of privacy; integrating health information privacy and breach compliance with general information privacy and security requirements in accordance ...

  • Identification #: 6025.18
  • Type: Instructions
Aug 12, 2015

Security of Individually Identifiable Health Information in DoD Health Care Programs

This instruction establishes policy and assigns responsibilities for security of individually identifiable health information created, received, maintained, or transmitted in electronic form (referred to in this instruction as “electronic protected health information (ePHI)”).

  • Identification #: DoD Instruction 8580.02
  • Type: Instructions
Mar 6, 2008

Update to Using Digital Signature when Sending Electronic Mail

.PDF | 98.94 KB

This Memorandum implements the recent Department of Defense (DoD) requirement on the use of digital signature for e-mail, and is in addition to my memorandum of June 13, 2007, “Use of Digital Signature on TRICARE Management Activity (TMA) Official Electronic Mail (e-mail).”

  • Identification #: N/A
  • Type: Guidelines
Jun 23, 2006

Protection of Sensitive Agency Information

This Memorandum addresses the efforts to properly safeguard information assets while using information technology by incorporating a checklist from the National Institute of Standards and Technology (NIST) for protection of remote information.

  • Identification #: OMB Memorandum 06-16
  • Type: Memorandums
Last Updated: July 21, 2023
Follow us on Instagram Follow us on LinkedIn Follow us on Facebook Follow us on Twitter Follow us on YouTube Sign up on GovDelivery