HIPAA Compliance for Microsoft Teams

Microsoft Teams (Teams) brings together the full breadth and depth of Microsoft 365, to provide a true chat-based hub for teamwork and give customers the opportunity to create a more open, fluid, and digital environment. Teams is built on existing Microsoft technologies woven together by O365 Groups. Teams is built on the Microsoft 365 hyper-scale, enterprise-grade cloud, delivering the advanced security and compliance capabilities Microsoft customers expect.

When the University of Colorado of Denver shares information, internally or externally, it is important that the confidentiality, integrity, and availability of that data be preserved. That is no small task, especially with so many cloud storage options available. Microsoft has entered into a Business Associates Agreement (BAA) with the University of Colorado of Denver. This agreement helps provide university students, faculty, and staff with a tool for collaboration and secure file sharing, Microsoft Teams.  

While Teams is configured for HIPAA compliance, you should use caution in the type of data is stored as well as with whom and how the data is shared (same university HIPAA policies and procedures apply).

HIPAA compliance depends on all of us. Please review the following information:

  • Data Classification & Impact
  • Protected Health Information (PHI)
  • Data Integrity - HIPAA Policy
  • Security of ePHI on Home Computers - HIPAA Policy

    If you have any questions regarding this service, please contact the CU Denver | Anschutz Medical Campus OIT Service Desk at 303.724.4357.