Privacy Portal

Home Compliance with Privacy Laws and Regulations

Compliance with Privacy Laws and Regulations


As a member of the University of Utah, you share in the responsibility for ensuring the university complies with data protection and privacy laws, regulations, and industry standards, as well as university policies and standards that require security safeguards around sensitive institutional data. At the University of Utah, your area may process personal information in a variety of ways from providing exceptional patient care to receiving payment card information for concessions at Rice-Eccels Stadium. Personal Information is collected by using University websites, which are governed by our Privacy Notice, conducting research, purchasing goods and services, engaging in educational activities, and working for the University. The University endeavors to comply with applicable data protection and privacy laws and regulations. If you have questions about compliance with laws, please contact the Office of General Counsel, Information Security Office, or the University Privacy Policy.

Federal Privacy Regulations
Part 11 of Title 21 of the Federal Code of Regulations outlines expectations for creating, managing and maintaining electronic records as well as electronic signature capture and intent. Its purpose…

Read More

Utah Privacy Regulations
Utah’s AI law establishes the Office of Artificial Intelligence Policy, an AI analysis program, and liability for improperly disclosing or failing to disclose generative AI use. Effective May 1, 2024,…

Read More

Which Standards Apply to You?
All legal and regulatory compliance requirements apply regardless of whether you are using a university owned or managed device or a personally owned device to work with sensitive university data.…

Read More

Federal Privacy Regulations
The university is committed to accuracy and transparency in its records and might be obligated under the FCRA to investigate disputed information held by consumer reporting agencies or to inform…

Read More

Federal Privacy Regulations
Student records at the University of Utah are governed by the Family Rights and Privacy Act (FERPA). The act forbids the university from releasing personally identifiable student educational records or…

Read More

Federal Privacy Regulations
The Federal Trade Commission published and updated its Health Breach Notification Rule at 16 CFR Part 318 to broaden protections for consumers that share their personal health information with vendors,…

Read More