Online Safety Community

As health information grows, sharing it among healthcare providers and researchers is necessary for providing and advancing healthcare services and healthcare research. But the Health Insurance Portability and Accountability Act (HIPAA) of 1996 severely limits how Protected Health Information (PHI) can be shared. It also has restrictions regarding how to protect it when it is shared.

One way of legally sharing PHI is to de-identify the information. Once PHI has been de-identified, it is no longer protected under HIPAA and may be shared freely without limitation. Information that is properly de-identified may be shared in some cases, and this kind of information is easier to share.

De-identification has to be done diligently

Yet, de-identification is not easy, and if it is not done correctly, the sharing of the information may be considered a breach that requires reporting to HHS and carries the potential for penalties and corrective action plans. Any information that gets released without getting properly de-identified can result in fines and corrective action plans that can run into the millions of dollars. It is hence necessary to ensure that the resulting information is truly de-identified and its use or disclosure will not result in a reportable breach under HIPAA.

Despite the strict controls imposed by HIPAA, a few loopholes such as the patient’s initials, may make it possible to guess vital information about the patient. It is to avoid a scenario such as this that the right process needs to be followed to ensure that data that is shared is shared appropriately, either as identifiable information, as a partially de-identified Limited Data Set, or as properly de-identified information.

Detailed learning on all the areas of de-identification

Clarity on these vital areas will be offered at a webinar that is bring organized by MentorHealth, a leading provider of professional trainings for the areas of healthcare. Jim Sheldon-Dean, who is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a wide variety of health care entities; will be the speaker at this session.

Please visit to gain valuable guidance on the crucial aspect of de-identification of PHI under HIPAA.

Jim will explain the guidance from the HHS Office for Civil Rights (OCR) and from the National Institute of Standards and Technology (NIST) on how to properly de-identify health information. He will explain the various needs for de-identified information and examine the typical questions that are covered in the guidance. The aim of this discussion is to provide a sound, defensible basis for an organization's decisions and processes surrounding de-identification of PHI.

Commonly used procedures for de-identification

Commonly used procedures for de-identification of Protected Health Information include:

  • Removing all eighteen of the listed identifiers or anything else that might be used to identify the individual about whom the information exists
  • Getting an expert to certify that the information is not identifiable.

Even these steps are not foolproof. More scrutiny is needed to be sure the data cannot be identified. Jim will show the specific steps that a healthcare provider must go through to ensure that de-identification of PHI is carried out properly. He will help the participants explore the concepts and methods of de-identification and many of the typical questions that arise.

The following areas will be covered at this session:

  • De-identification and its Rationale
  • The De-Identification Standard
  • Preparation for De-identification
  • Guidance on Satisfying the Expert Determination Method
  • Who is an expert, how do experts assess the risk of identification of information, what are the approaches by which an expert assesses the risk that health information can be identified, and what are the approaches by which an expert mitigates the risk of identification of an individual in health information
  • Guidance on Satisfying the Safe Harbor Method.

Fill the form to get more HIPAA PHI Updates

Views: 15

Comment

You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

Training Doyens posted events
1 hour ago
Training Doyens updated an event
Thumbnail

Form I-9 Compliance at 26468 E Walker Dr, Aurora, Colorado 80016-6104

January 25, 2018 from 1pm to 2pm
OVERVIEWDon't spend another day worrying that you and your organization might end up in legal trouble from immigration law violations. The crucial information provided in this one-hour webinar will give you the knowledge and know-how needed to ensure your documentation is filled out appropriately, your records are kept correctly and your organization is legally compliant.WHY SHOULD YOU ATTENDImmigration law is one of the most pertinent and publicized issues in the United States right now.…See More
2 hours ago
John Robinson posted a blog post

The FDA's requirements for non-IND Foreign Clinical Studies

The FDA grants marketing approval for certain types of medical products whose application is the result of foreign clinical studies, provided the products and the clinical studies meet certain conditions. The types of medical productshttps://globalcompliancepaneltraining.files.wordpress.com/2017/12/the-fdas-requirements-for-non-ind-foreign-clinical-studies-2.jpg?w=800&h=504…See More
21 hours ago
Training Doyens posted an event
Thumbnail

Excel - Pivot Tables 101 at 26468 E Walker Dr, Aurora, Colorado 80016-6104

December 20, 2017 from 1pm to 2:30pm
OVERVIEWPivot Tables are one of the most powerful tools in Excel’s data analysis and Business Intelligence (BI) armory. With just a few clicks of the mouse (and no complicated formulas!) you can quickly and easily build reports and charts that summarize and analyze large amounts of raw data and help you to spot trends and get answers to the important questions on which you base your key business decisions.WHY SHOULD YOU ATTENDLearning how to create Pivot Tables is one of the must have skills…See More
yesterday

Forum

PEGA Axis error: Parser already accessed

We have a PEGA frontend, from in which we're keying in double byte characters like japanese and being send to allotted java webservice through axis. this is working best when we ship singlebyte…Continue

Tags: pega_training, pega_online, pega

Started by Soujanya Naganuri on Thursday.

VMware player error on install vmware tools.

 I've installed the last version of VMware player (4.0.2) and created a virtual machine with ubuntu 10.04. However, some operations with …Continue

Tags: training, online, vmware

Started by emmablisa Dec 1.

All About QlikView

QlikViewQlik relies on sophisticated analytics that enables data discovery using an in-memory engine to analyze data for patterns not visible via SQL data structures or queries. The company’s two…Continue

Tags: Safety, Qlikview

Started by nicolewells Nov 25.

Occupational Health and Safety 5 Replies

Health and safety are important aspects of an organisation’s smooth and effective functioning.  Did you know that workplace health & safety injuries cost Australian businesses over $60 billion…Continue

Tags: Safety, and, Health, Occupational

Started by WHS Solutions. Last reply by Tara safe Nov 16.

QlikView for its Safety Strategic Business Intelligence Solution Worldwide

QlikTech (NASDAQ:QLIK), a leading…Continue

Tags: Qlikview, safety

Started by nicolewells Nov 15.

Badge

Loading…

© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service