Privacy and Security of EHRs

Portrait of Dr. Karen B. DeSalvo

When and Where You Need It Most: Your Rights to Access and Transmit Your Health Information

Dr. Karen B. DeSalvo | January 11, 2016

In order to effectively manage their health, individuals need to be able to access and use their health information when, where, and how they want, including sending it to the people and tools helping them become or stay healthy – neighbors, friends, relatives, health care providers who are treating or consulting with the individual, or even third-party software tools used for self-management. The Health Insurance Portability and Accountability Act of 1996 (HIPAA) governs the privacy of individuals’ protected health information (PHI) and when and how that information can be shared.

Read Full Post.
Portrait of Kathryn Marchesini, J.D.

Shining a Light on Secure Health Big Data and Digital Privacy

Kathryn Marchesini, J.D. | September 24, 2015

Through the proliferation of software applications and mobile technology, the amount of identifiable health information being collected, analyzed, and used is growing exponentially. As the volume, velocity, and variety of such information activities continue to grow, ONC is looking at how to protect that information from potential risks that may arise from unknown and inappropriate use.

Read Full Post.
Portrait of Lucia Savage, J.D.

Practical Information From HHS About Privacy, Security and Health IT: ONC’s Guide to Privacy and Security of Electronic Health Information

Lucia Savage, J.D. | April 13, 2015

In the draft Interoperability Roadmap, ONC committed to helping individuals, providers, and the health and health IT community better understand how existing federal law — the Health Insurance Portability and Accountability Act (HIPAA) — supports interoperable exchange of information for health. Today, we take a first step to fulfill that commitment and published the revised Guide to Privacy and Security of Electronic Health Information.

Read Full Post.
Portrait of Joy Pritts

ONC launches new challenge to create online notice of privacy practices

Joy Pritts | February 10, 2014

Thanks to the HIPAA Privacy Rule patients have the right to be informed of their rights with respect to their protected health information as well as how their health care providers and health plans may use and disclose such information.  Health plans and health care providers are required to develop and distribute a written notice that provides a clear, user-friendly explanation of these rights and practices. These are known as Notices of Privacy Practices (NPP) and may be on paper or online.

Read Full Post.