UW-Madison Zoom Workplace - Secure Zoom Overview

This document provides an overview of what Secure Zoom is, who is eligible, the differences between a Standard Zoom and Secure Zoom account, and more.

Overview

What is Secure Zoom?

Secure Zoom is an environment that was requested by and created for the UW-Madison Health Care Component (HCC) population. It was configured in collaboration with the Office of Compliance and the Office of Cybersecurity to implement additional controls for increased security and reduce risk to meet HIPAA requirements

Effective October 5, 2021, units classified as being a Health Care Component (HCC) and groups related to these units, will be required to use a Secure Zoom account. 

Eligibility

  • UW-Madison Faculty
  • UW-Madison Staff
  • UW-Madison Students
  • Important: Alumni, Emeriti, and Retirees with IT Services are not currently eligible for UW-Madison Zoom and cannot create a consumer Zoom account (https://zoom.us/) using any address ending in @wisc.edu.

Opt-in to Secure Zoom for Standard Zoom accounts

Individuals who are not associated with an HCC group/unit will most likely have a Standard Zoom account. Learn how to view your account group type. Standard Zoom accounts were not configured to comply with HIPAA requirements. 

Opt-in options

You can update your UW-Madison Zoom account from Standard to Secure Zoom by doing one of the following:

  • Individual request:

    1. Visit the Secure Zoom opt-in manifest group.
    2. Select the Join group button located towards the top right corner of the page.
    3. Log out of your UW-Madison Zoom account and log back in to complete the account update.
    4. (Optional) Verify your account group type has been updated.
  • Group request: Contact the DoIT Help Desk and provide a list of NetIDs that need to opt-in to Secure Zoom. 

Opt-out options

If you updated your Standard Zoom account to Secure Zoom and no longer need to have a Secure Zoom account type, you can opt-out by doing one of the following:

  • Individual request:

    1. Visit the Secure Zoom opt-in manifest group.
    2. Select the More actions drop-down menu located in the top right corner and select Leave group.
    3. Log out of your UW-Madison Zoom account and log back in to complete the account update.
    4. (Optional) Verify your account group type has been updated.
  • Group request: Contact the DoIT Help Desk and provide a list of NetIDs that need to opt-out of Secure Zoom.

Please note: Individuals who are part of an HCC group/unit will not have the option to opt-out of having a Secure Zoom account. 

What is the difference between a Standard Zoom account and a Secure Zoom account?

  • Standard Zoom account - In general, this is the default account type when a UW-Madison Zoom account is created for an eligible user.  Most account settings can be modified to meet the needs of the host and/or attendees. 
  • Secure Zoom account - Individuals with a Secure Zoom account are affiliated with the Health Care Component (HCC) based on their employee record. This account type will have more account setting restrictions to ensure individuals in the HCC are adhering to HIPAA requirements. A few account settings may be grayed out and locked to ensure enhanced security is consistent during meetings. Note: These account settings will impact attendees while they are in a meeting hosted by a Secure Zoom account. If an attendee attends a meeting hosted by any other account type, they will not be subject to the same Secure Zoom account setting restrictions.

How can I tell what type of Zoom account I have?

You can learn how to view your account type by viewing your group listing here: https://kb.wisc.edu/zoom/112923 .

Zoom desktop/mobile app version requirement 

Individuals using a Secure Zoom account and participants who attend meetings hosted by a Secure Zoom account must use a Zoom desktop or mobile app version of 6.0.10 or later. See below for resources:

Service accounts in Secure Zoom

We are working on formalizing a process for reviewing requests for a service account in Secure Zoom. Currently, requests are being reviewed in collaboration with the Office of Compliance. If you would like to request a service account in Secure Zoom, please contact the DoIT Help Desk and provide a detailed use case. Please note, due to the level of risk service accounts pose in Secure Zoom, very few use cases may be approved. Below are some of the risks of using a service account in Secure Zoom:

  • Duo is not enforced for service accounts.
  • Account activity logs will reflect the service account, not an individual if an incident were to occur. 
  • Individuals can share the service account's credentials.

Compare Standard Zoom and Secure Zoom account settings



Keywords:
uw madison hcc health care component hipaa secure zoom phi telehealth healthcare cybersecurity office of compliance university of wisconsin madison account settings personal consumer test room client version requirement opt-in service accounts compliant opt-out optout optin upgrade update 
Doc ID:
113688
Owned by:
Zoom S. in Zoom
Created:
2021-09-14
Updated:
2024-10-18
Sites:
DoIT Help Desk, Zoom