Health Information Privacy and Data Security Graduate Certificate

Navigate the myriad legal, ethical and regulatory issues that intersect with data use, privacy protection and compliance.

Program Overview

The 100% online Graduate Certificate in Health Information Privacy and Data Security:

  • 12 credit units, with four courses at three credit units each, which can be completed in less than eight months
  • Free to apply
  • No admissions test required
  • Units earned may be applied to a Master of Legal Studies degree
  • You may take one course (three credit units) from any of the courses offered in the three other Graduate Certificates in Health Law, including Health Law for Health Professionals, Regulatory Science, and Aging Law and Policy


This certificate will provide students with a strong foundation in the governing laws, cybersecurity measures, data analysis and use, and management issues associated with health information privacy. The courses focus on privacy laws that span the Health Information Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH) Act, and Europe’s General Data Protection Regulation (GDPR), because they include specific data privacy protection compliance requirements that represent a business risk for organizations. Failing to meet these requirements or experiencing a data breach can have significant legal, financial, and reputation repercussions. The knowledge, skills, and abilities gained from this certificate are highly desirable to organizations in need of guidance to ensure compliance with the governing laws in America and abroad, and to be aware of emerging legislation in this space.


Application Info


This course explores a range of contexts in which the courts and other branches of government have attempted to give definition to a legal right to privacy. The right to privacy is puzzling and evolving area with technology advancements. Courts and policymakers grapple with the rules that ought to govern the collection and use of personal information.

This course is available to undergraduates as Law 480.

Better understand health data privacy and cybersecurity in the context of how companies structure, negotiate, and protect their commercial and compliance relationships. Specific topics include clinical research and privacy; risk management; health data security; and data security breaches.

This course is available to undergraduates as Law 480B.

The world of health information technology is rapidly changing with the adoption of electronic health records and the advancement of health information technology. The right information in the right hands at the right time is critical to effective patient care. This course provides an overview of the laws and regulations governing the use and disclosure of patient health information with a focus on patient rights in age of big data, data-sharing, and information blocking.

This course is available to undergraduates as Law 480C.

This course surveys the field of biomedical informatics, including the effective uses of biomedical data collected from individuals (patients) and populations for scientific inquiry, problem solving, and decision making. In addition, ethical, legal, and social implications of medical informatics are covered, with emphasis on technology ethics, digital health regulations, and privacy laws relevant to healthcare.

This course is available to undergraduates as Law 477.

The course provides an overview of the major legal and regulatory issues that impact access to telehealth from different stakeholder perspectives, including patients, caregivers, providers, and payers. Over six weeks, students will cover topics ranging from addressing digital health equity; reimbursement; federal and state regulatory telehealth oversight, privacy and data security; and discuss what health policy innovations are needed for the law to better adapt to emerging digital health technologies while ensuring equitable access, quality care, and cost-effectiveness.

This course is available to undergraduates as Law 480D.


Upon completion of the program, you will obtain the following skills:

  • Become familiar with the current and emerging U.S. and international privacy laws and regulations, including HIPAA, HITECH, and GDPR.

  • Articulate the types of contractual, programmatic, compliance requirements that are necessary to ensure the privacy and security of health data.

  • Identify privacy and cybersecurity requirements, standards, and best practices in heath data privacy, security, and compliance programs.

  • Explain and apply constitutional underpinnings of privacy law, including balancing policy trade-offs and preserving the first and fourth amendments.

  • Describe principles and applications of various analytic tools and techniques in data collection and management, e.g., bioinformatics, patient-reported outcomes, and clinical research.

  • Awareness of emerging topics in health data privacy and security, including technology innovations and eHealth.

Career Possibilities

  • Privacy officers
  • Information Security Officers
  • Compliance Officers
  • IT Risk Assessment Administrators
  • Data and Privacy Analysts

Apply Now

For more information email