CDPH Annual Privacy Training

The CDPH Community Rapid Testing program requires all testers to to complete the CDPH Annual Privacy Training with NO EXCEPTIONS. Privacy training through a different program or organization is not accepted. 

The Privacy Training is available to review at the links below:

• English: CDPH Information Privacy Security Training
• Español: Capacitación sobre privacidad y seguridad de la información del CDPH
   

After reviewing the training, please scroll to the bottom to attest to the following:

1. I attest that I have reviewed and understand the material in the CDPH Information Privacy Security Training for the COVID-19 Antigen Testing Program.
    
2. I attest that I have reviewed and understand the Summary of Key Concepts, presented below: 
   • Privacy concerns exist wherever and whenever Personal or Confidential information is collected, stored, or disseminated. Privacy is a concern whether the information is electronic, oral, or physical. 
   • The Information Practices Act (IPA) establishes requirements for all state agencies for the collection, maintenance and dissemination of Personally Identifiable Information (PII). 
   • Minimum Necessary: Access to PII must be limited to the smallest amount necessary to do your job.
   • Only share PII with other individuals in the Antigen Testing program if they require it for their operations.
   • Do not disclose any PII or Personal Health Information (PHI) to any external entity unless approved by CDPH.
      
3. I attest that I have reviewed and understand the Action Steps to Take in Your Workplace, presented below: 
   • Do not include any personal information on the test cards, texts, or emails, including name, DOB, or screenshot containing PII or PHI.
   • Take steps to protect the privacy of all verbal exchanges or discussions of personal or confidential information, regardless of where the discussion occurs.
   • If you are utilizing your own mobile device for Antigen Testing program purposes, ensure it is password protected or encrypted in some manner. 
   • Anytime you send email messages containing personal or confidential information, even if it is to another governmental entity email address, the email should be encrypted.
   • Simply Put: Theft or loss of any Antigen Testing program information, equipment, or device is a security incident and must be reported to CommunityRapidTesting@cdph.ca.gov and the CDPH Information Security Office CDPH.InfoSecurityOffice@cdph.ca.gov immediately.
   • Personal and confidential information MUST always be secured, including during non-working hours.
   • Paper documents are at a higher risk than electronic files of being breached. Secure them!