It is only when the data is combined with private information that it becomes PHI.
– a telephone book holding a name and number, that data by itself is not PHI. If the data can be attained on its own from a public source i.e. The rule for determining what data is PHI is simple. These factors range from general identifiers such as name, telephone number and email address to more permanent identifying data like a social security number. The HIPAA Journal identifies PHI as possessing 18 specific identifiers. PHI data fully identifies an individual and his or her relationship to a health care organization (insurance, hospital or related business). Data must either be de-identified for academic use or properly and completely destroyed. This makes health care a unique industry with its own special conditions. However, health care is different in that its information is valuable, not just to hackers but to scientists. Preserving this data is crucial and HIPAA sets forward a very specific mandate. Permanent identifying data is stored in almost every health care office, from small local practices to large medical insurance companies. The term “protected health information,” otherwise known as PHI, was introduced and a set of strict rules was established to ensure its confidentiality.ĭata destruction is an important consideration in any sector, but health care has some of the highest stakes. In the late 2000s, HIPAA was altered to reflect the digital age.
That said, technology has advanced considerably since 1996. The Health Insurance Portability and Accountability Act was first instituted in 1996 as a way to federally mandate and monitor the health care industry’s use of data.
0 kommentar(er)
