Health Information Privacy and Security Office
What's Inside
About Us
Overview of Privacy and Data Security
University Policies on Privacy and Data Security
Privacy and Data Security Training
Helpful Links
University Policy Library
AHC-Information Systems
U of M Office of Information Technology: Help and Support
Minnesota e-Health Initiative
HHS Health Information Privacy
  Home > Privacy and Data Security Resources and Guidance > Understanding and Identifying Private and Public Information

Understanding and Identifying Private and Public Information

The University collects and maintains a variety of information, including information about its students, faculty, staff, and others. This information is collected in order to conduct University business. Information is classified as private or public based on federal and state law.

  • Private information can only be released to the subject of the information and to those within the university who have a legitimate need-to-know, outside entities with the subject's written permission, and others as allowed by law. Some private information, like protected health information (PHI) and electronic PHI, is protected by law.
  • Public information is available to anyone who requests it, except in the case of student data, when the student has requested that no public information about him/her be released without express written permission.

The Privacy and Data Security Guide identifies departmental contacts to assist you with maintaining the privacy and security of information.

Additional Resources