How to Meet DoD HIPAA and Privacy Act Training Requirements

Understanding DoD Training Mandates

To maintain Military Health System compliance, the Department of Defense requires workforce members who handle protected health information or personally identifiable information to complete formal privacy training. This includes Defense Health Agency personnel, military members, civilians, and contractors supporting healthcare operations or accessing patient data.

The core training covers the HIPAA Privacy Rule and the Privacy Act of 1974. DoD standardizes this requirement through the DHA-US001 Course on the Joint Knowledge Online Platform, which satisfies baseline annual training for most components. Commands may add local modules or briefings to address unit-specific processes.

Compliance hinges on two essentials: completing the correct course and retaining proof. You should download the completion certificate and ensure it is recorded in your organization’s training system so supervisors and privacy officials can verify status during inspections or audits.

Accessing the DHA-US001 Course

You access training through the Joint Knowledge Online Platform (JKO). Sign in with your Common Access Card or an approved JKO username and password, then search for “DHA-US001.” Select the course, click enroll, and launch it from your My Training queue.

Before launching, enable pop-ups and third-party cookies for the site, and use a supported browser such as Chrome or Edge. If you are a new contractor or a new-hire without a CAC, ask your government sponsor or training manager to request an external JKO account so you can reach the DHA-US001 Course.

When the course opens, verify your name and DoD ID/EDIPI in your JKO profile. Accurate identity data ensures your certificate matches personnel records and avoids rework during audits and performance reviews.

Completing Course Modules

Module overview

The curriculum begins with an orientation and knowledge check, then moves through practical scenarios. Expect instruction on patient privacy fundamentals, handling records, and responding to incidents. The design emphasizes real-world decisions you will face in clinics, administrative offices, and telehealth settings.

HIPAA Privacy Rule essentials

You will learn the definitions of protected health information, permitted uses and disclosures, minimum necessary standards, patient rights, and documentation expectations. The course maps these rules to Military Health System workflows to help you apply them consistently.

Privacy Act principles

Content explains how the Privacy Act governs DoD systems of records containing personally identifiable information. You will practice identifying routine uses, applying access and amendment rights, and safeguarding records across digital and paper formats.

Privacy Act Breach Response basics

The course walks you through immediate actions for suspected or confirmed privacy incidents: protect the information, stop further disclosure, notify leadership and your privacy officer, and document facts. You will see how timely reporting supports containment, risk assessment, and notifications.

Assessment and certificate

Complete each lesson and pass the final assessment to earn credit. Save your certificate as a PDF, confirm that JKO marks the course “Completed,” and upload or submit proof according to your unit’s procedures. Retain a copy for your personal records.

Meeting Training Deadlines

Most organizations require completion within the first 30 days of onboarding and an annual refresher thereafter. Always follow your command’s directive if it sets a different timeline, and schedule your renewal at least 30 days before the due date to avoid lapses.

Re-training may also be required after a significant role change, extended break in service, or involvement in a privacy incident. Keep reminders on your calendar, verify your status in the training tracker monthly, and notify your supervisor if a system error prevents completion.

Obtaining Continuing Education Credits

Many professions can claim continuing education through the Defense Health Agency’s Continuing Education Program Office. After you finish the DHA-US001 Course on JKO, locate the associated activity in the CE system, complete the post-course evaluation, and claim credit for your discipline.

Match the credit type to your license (for example, nursing, pharmacy, social work, or medicine), enter your license details accurately, and save the CE certificate. Keep both the JKO training certificate and the CE certificate, as some audits require evidence of training and professional credit.

Troubleshooting Access Issues

Course will not launch

Enable pop-ups, clear browser cache, and try an alternate supported browser. Turn off VPNs or content blockers that interfere with training media, and relaunch the course from your My Training list after refreshing the page.

CAC and profile problems

If JKO does not recognize your CAC, select the correct certificate, update expired DoD certificates on your workstation, or sign in with your JKO username and password if authorized. Ensure your profile displays the correct DoD ID/EDIPI and email, then try again.

Completion not recording or no certificate

Verify that all modules show complete and that you passed the final exam. Close the window properly to trigger bookmarking, then reopen JKO to confirm the “Completed” status. If your name is incorrect on the certificate, update your profile and regenerate it.

Contacting Support Resources

Start with your unit training manager or privacy officer for policy questions and local procedures. They can confirm whether the DHA-US001 Course fulfills your component’s requirement and what proof is needed for Military Health System compliance.

For technical issues on the Joint Knowledge Online Platform, contact the JKO Help Desk with your DoD ID/EDIPI, course number, detailed error message, browser and version, and screenshots. For CE questions, reach out to the Continuing Education Program Office support team with your profession, license details, and completion date.

Conclusion

Meeting DoD HIPAA and Privacy Act training requirements is straightforward when you enroll in the DHA-US001 Course on JKO, complete each module, and retain your certificate. Plan ahead for annual renewal, document completion in your unit’s tracker, and use your privacy officer, JKO Help Desk, and the Continuing Education Program Office to resolve issues quickly.

FAQs.

Who is required to complete DoD HIPAA and Privacy Act training?

Anyone in the Military Health System who accesses, uses, discloses, or safeguards patient information must complete the training. This includes Defense Health Agency personnel, service members, government civilians, and contractors supporting clinical or administrative functions.

What topics are covered in the DHA-US001 course?

The course covers HIPAA Privacy Rule fundamentals, the Privacy Act of 1974, minimum necessary standards, patient rights, proper handling of PHI and PII, and Privacy Act breach response steps, with scenarios tailored to Military Health System operations.

How soon must new employees complete the training?

Most commands require completion within 30 days of onboarding, followed by annual refresher training. Always follow your component’s directive if it specifies a different timeline or adds local modules.