We use cookies to deliver our online services. Details of the cookies we use and instructions on how to disable them are set out in our Cookies Policy. By using this website you agree to our use of cookies. To close this message click close.

OCR Releases Guidance on PHI De-Identification in Accordance with HIPAA

27 November 2012
OCR Releases Guidance on PHI De Identification in Accordance with HIPAAOn November 26, the U.S. Department of Health and Human Services’ Office for Civil Rights released guidance on methods for de-identification of protected health information in keeping with the HIPAA Privacy Rule (as required under the HITECH Act).   The guidance answers questions related to each of the permissible de-identification methods – the expert determination (statistician) method and safe harbor method.  It incorporates comments and stakeholder feedback received during a March 2010 workshop.

The guidance does not contain any surprises, but does confirm many commonly-accepted interpretations of the Privacy Rule related to de-identification and also provides helpful additional detail concerning some of the technical aspects of the two de-identification methodologies.

The full text of the guidance can be found at: http://www.hhs.gov/ocr/privacy/hipaa/understanding/coveredentities/De-identification/hhs_deid_guidance.pdf.

HL Chronicle of Data Protection

Cybersecurity in the Health Sector

The health sector is under siege with cybersecurity threats. Some of the largest announced cyber attacks in U.S. history have targeted organizations in the health industry. Regulators have...

02 May 2016
Loading data