Service Description
MiDesktop provides the hosting infrastructure for virtualizing Windows desktops. It enables remote computing and thin client access from any Internet-connected device.
Compliance
MiDesktop is a U-M service maintained on the Ann Arbor campus.
MiDesktop includes the safeguards required by HIPAA, accordingly, you may use it to maintain Protected Health Information (PHI). To satisfy internal HIPAA requirements, consult with Information Assurance (IA), and they will will work with you to document your data sets and their location. (Contact IA via the ITS Service Center.) Complying with HIPAA's requirements is a shared responsibility. Users sharing and storing PHI in VDI are responsible for complying with HIPAA safeguards, including:
- Using and disclosing only the minimum necessary PHI for the intended purpose.
- Obtaining all required authorizations for using and disclosing PHI.
- Ensuring that PHI is seen only by those who are authorized to see it.
- Following any additional steps required by your unit to comply with HIPAA.
Social Security numbers should only be used where required by law or where they are essential for university business processes. If you must use SSNs, it is preferred that you use institutional resources designed to house this data, such as the Data Warehouse. IA can help you explore appropriate storage locations or work with you to appropriately encrypt the data if those alternatives will not work for you. (Contact IA via the ITS Service Center.)