DSHS TB Security and Database Account Management

Tuberculosis (TB)

Tuberculosis (TB)

National Electronic Disease Surveillance System (NEDSS) for Tuberculosis Programs

DSHS TB Program

DSHS TB Program

Email the TB Program
Call the TB Program
737-255-4300

DSHS TB Security and Database Account Management

General Information

  1. Security Training and Confidentiality Requirements – Anyone needing access to a DSHS TB application or database must complete the TB/HIV/STD Data Security and Confidentiality training, as listed below. Database account access expires twelve months after completing the security and confidentiality training. Access to DSHS applications and databases is subject to revocation at any time.
     
  2. Local Responsible Party (LRP) Instructions – LRPs accept the responsibility for implementing and enforcing DSHS security and confidentiality policies and procedures within their agency. LRPs are responsible for approving database access for any employees or contractors at their agency. DSHS only provides access to databases for individuals who LRPs confirm.

    LRP Designees – Large agencies may assign one or more individuals as LRP designees. The LRP retains the ultimate responsibility of implementing and enforcing security and confidentiality policies and procedures; however, the LRP may delegate the authority to approve database access requests for individuals in their agency. To assign an LRP designee, the LRP must email the TB Program, stating permission and confirming they have reviewed the roles and responsibilities of an LRP designee with this individual. 
     
  3. Steps to request or retain access to DSHS databases
    • The prospective or renewing user follows the steps to request new access and renew account access. 
    • DSHS alerts the LRP or designee when a user requests new access, renews account access, and deactivates a user.

Requesting New Access to a DSHS Database

The following steps apply to new DSHS TB applications and database account requests. Requests for new access to a database must be approved by a DSHS-approved LRP or LRP designee. Individuals must check with their supervisor if they do not know who the LRP is. DSHS will not accept requests for new access to a DSHS database without approval from an LRP or LRP designee.

New User and Renewal Instructions:

  1. Complete the Security and Confidentiality Training course. For those who take the security and confidentiality course:
    • Complete the training and pass with a score of at least 85 percent;
    • Save the completed course certificate as Lastname_Firstname_Agency_Strn.pdf; and
    • Upload the TB/HIV/STD Data Security and Confidentiality certificate to your request on Smartsheet.
       
  2. Newly hired TB employees will need to submit a Notice of Change in TB Personnel form. If a form has already been completed prior to requesting databases, a new Notice of Change in TB Personnel form is not required.
    • The Notice of Change in TB Personnel form may be completed by the individual requesting access to TB databases or by a supervisor, or LRP/LRP designee. 
    • New access requests for new hires will not be approved if a Notice of Change in TB Personnel form has not been completed.
       
  3. Submit the request after ensuring your Data Security and Confidentiality Certificate is attached. New employees must complete a Notice of Change in TB Personnel form before submitting the request.
     
  4. Individuals may receive an email from the TB program with additional documentation needed for access to certain databases.

You may request any of our available TB databases and applications.

Visit the SmartSheet to complete the TB Database Access Requests form to request new access, renew access, and deactivate a user.  

Renewing Database Access (Annual)

DSHS requires people with access to confidential TB information to complete security training and sign a Confidentiality Agreement and an Acceptable Use Agreement at the time of employment and on an annual basis. This includes DSHS employees (permanent, temporary, and contractors), IT staff, volunteers, and students.

Deactivating User Access from DSHS Databases

A supervisor or LRP is responsible for notifying the TB program when an employee’s employment ends with the agency or changes to a new department or role that no longer requires the individual to access the database(s). The LRP or supervisor must complete the deactivation requests. 

***Only submit access requests for yourself. DSHS will decline third-party requests.***

For deactivations, visit the SmartSheet to complete the TB Database Access Requests form.

Security Confirmation for Employees Who Do Not Require Database Access

Complete the Security and Confidentiality Training course.

  • Complete the training and pass with a score of at least 85 percent;
  • Save the completed course certificate as Lastname_Firstname_Agency_Strn.pdf; and
  • Upload the TB/HIV/STD Data Security and Confidentiality Certificate at the link below.

Then follow the instructions on the Security Confirmation for Employees Who Do Not Require Database Access page.