Compliance with Department of Veterans Affairs (VA) research data security

All Yale University faculty and staff members involved in research sponsored by the U.S. Department of Veterans Affairs (VA) must comply with all requirements for protecting VA research subjects' privacy, and VA research data security and confidentiality.

General information on VA research data security

VA Research Data Security & Privacy (US Dept of Veterans Affairs)

Access to a VA server

In order to connect to a WHVA server (file server) from the Yale (or a non-va.gov) network you must have a VA network ID and VA VPNaccess*. Investigators who do not currently have a VA network ID and/or who want to obtain VA VPN access should contact Sid Hammons in the VA Research Office:
sid.hammons@va.gov or 203.937.3830.

Submit signed copies of the following documents to Sid Hammons:

• VPN memorandum
• Rules of Behavior

* You can use the Yale Cisco VPN client (available from the software library), but you will need to import VA.gov profiles (restricted).

Contact information for VACT Information Security Office

Michael Raffanello (Michael.Raffanello@va.gov) - 203.937.3444 or 781.687.4844

Yale University HIPAA compliance policies & information

If you perform research that generates ePHI should consult the Interim Guidance on Human Subjects Research Data Security (PDF), and see the primary Yale University HIPAA site for further information on HIPAA privacy and security regulations.

---

Related topics

• HIPAA privacy & confidentiality regulations
• 3-Lock University data
• Personal financial or Social Security information
• Securely sending & sharing data

Related University Policies & Procedures

• Yale computing security & access policies & procedures