The CDPH Community Rapid Testing program requires all testers to complete the Privacy Training with NO EXCEPTIONS.
Privacy training through a different program or organization is not accepted.
The Privacy Training is available to review at the links below:
CDPH Information Privacy Security Training (English): CDPH Information Privacy Security Training
Capacitación sobre privacidad y seguridad de la información del CDPH (Español): Capacitación sobre privacidad y seguridad de la información del CDPH (Español)
After reviewing the training, please scroll to the bottom to attest to the following:
- I attest that I have reviewed and understand the material in the CDPH Information Privacy Security Training for the CDPH Communinity Rapid Testing program.
- I attest that I have reviewed and understand the Summary of Key Concepts, presented below:
- Privacy concerns exist wherever and whenever Personal or Confidential information is collected, stored, or disseminated. Privacy is a concern whether the information is electronic, oral, or physical.
- The Information Practices Act (IPA) establishes requirements for all state agencies for the collection, maintenance and dissemination of Personally Identifiable Information (PII).
- Minimum Necessary: Access to PII must be limited to the smallest amount necessary to do your job.
- Only share PII with other individuals in the CDPH Community Rapid Testing program if they require it for their operations.
- Do not disclose any PII or Personal Health Information (PHI) to any external entity unless approved by CDPH.
- I attest that I have reviewed and understand the Action Steps to Take in Your Workplace, presented below:
- Do not include any personal information on the test cards, texts, or emails, including name, DOB, or screenshot containing PII or PHI.
- Take steps to protect the privacy of all verbal exchanges or discussions of personal or confidential information, regardless of where the discussion occurs.
- If you are utilizing your own mobile device for CDPH Community Rapid Testing program purposes, ensure it is password protected or encrypted in some manner.
- Anytime you send email messages containing personal or confidential information, even if it is to another governmental entity email address, the email should be encrypted.
- Simply Put: Theft or loss of any CDPH Community Rapid Testing program information, equipment, or device is a security incident and must be reported to communityrapidtesting@cdph.ca.gov and the CDPH Information Security Office CDPH.InfoSecurityOffice@cdph.ca.gov immediately.
- Personal and confidential information MUST always be secured, including during non-working hours.
- Paper documents are at a higher risk than electronic files of being breached. Secure them!
