Welcome to the Downstate HIPAA Web-Site

The purpose of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) is to improve the efficiency and effectiveness of the healthcare system by standardizing the electronic exchange of administrative and financial data and to protect the security and privacy of protected health information (PHI). As a healthcare provider who conducts transactions electronically, SUNY Downstate Health Sciences University is considered a covered entity under the rule and required by federal law to implement these standards and regulations.

The regulations are comprised of three essential areas:

  • Privacy - Oversight Responsibility: Office of Compliance & Audit Services, (718) 270-4033/2095
  • Transaction & Code Sets - Oversight Responsibility: Hospital Finance, (718) 826-4900
  • Security - Oversight Responsibility: Information Services, (718) 613-8593



The Office of Compliance and Audit Services HIPAA Division is staffed by the following professionals:

Shoshana Milstein, CHC, CHP, RHIA, CCS - Vice President, Compliance and Audit Services / HIPAA Privacy Officer

Alexandra Bliss, CHC, CPHIT, CPEHR - Director of Compliance

Sefilat Ajishafe - Senior Compliance Manager

Jessica Chen - Compliance Training Specialist