Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data De-identification

Published byHarriet McLaughlin Modified over 5 years ago

Similar presentations

Presentation on theme: "Data De-identification"— Presentation transcript:

1 Data De-identification
DHCS County Privacy Training June 2019

2 Agenda Introduction County Responsibility
Data De-Identification Guidelines PHI and PI HIPAA Standard of De-Identification Safe Harbor Expert Determination Re-Identification Resources

3 Introduction Department of Health Care Services (DHCS) committed to culture of privacy and security AND to making health care data publicly available. De-identification of Protected Health Information (PHI) and Personal Information (PI) to mitigate risk and comply with regulations.

4 County Responsibility
Counties required to follow Health Insurance Portability & Accountability Act (HIPAA) regulations regarding data de-identification. Counties are Business Associates (BA) to DHCS which is a Covered Entity (CE). Counties may not de-identify data unless it is allowed in their Business Associate Agreement (BAA) with DHCS.

5 Data De-Identification Guidelines

6 Data De-Identification Guidelines (DDG)
Developed as guide to assess data for public release. Based on DDG of California Health & Human Services Agency (CHHS). Data publishable if: Public by law such as via Public Records Act (PRA), or Not prohibited from release by laws, regulations, policies, rules, rights, court order, or any other restriction. CHHS uses Open Data Portal to share public data.

7 Data Tables Considered for Open Data Portal
Level One: Data tables that can be released to the public and published without restriction; Level Two: Data tables that have some level of restriction or sensitivity but currently can be made available to interested parties with a signed data use agreement; or Level Three: Level three data are restricted due to HIPAA, state or federal law. This data will NOT be accessible through the CHHS Open Data Portal.

8 DDG Focus Assessing aggregate and record-level data for de-identification. Data that includes personal characteristics of individuals: Can include unique identifiers that may, even in aggregated data, be able to identify an individual (see next slide).

9

10 Quasi-identifiers Personal characteristics that could identify an individual: Provider name. Clinic name. Race. Diagnosis.

11 Data Assessment for Public Release Procedure
Follow this process to ensure compliance with HIPAA and CIPA regulations: Review the data to determine if it includes personal characteristics, directly or indirectly, that can be tied back to an individual; If there is concern for personal characteristics, then assess the data for small numerators or denominators; If there is concern for small numerators or denominators, assess potential risk of data release;

12 Data Assessment for Public Release Procedure (cont.)
If there is potential risk identified, assess the need to apply statistical masking methods to de-identify the data; Following statistical de-identification, the expert determination documentation and data release are reviewed by legal; and, After statistical de-identification, the data is reviewed and approved for release based on program management and Office of Public Affairs (OPA) approval.

13 Overview of steps in Data Assessment for Public Release Procedure
Overview of steps in Data Assessment for Public Release Procedure. Details on each step can be found in the DDG.

14 PHI

15 What is Protected Health Information?
PHI means the individually identifiable health information that is: Transmitted by electronic media; Maintained in electronic medium; or Transmitted or maintained in any other form or medium.

16 What is Personal Information (PI)?
“any information that is maintained by an agency that identifies or describes an individual, including, but not limited to . . .medical history. It must include statements made by, or attributed to, the individual.” Shutterstock

17 Protected Health Information
PHI is health information collected from an individual, created or received by a covered entity and, Relates to the past, present or future physical or mental health or condition of an individual; or the past, present, or future payment for the provision of health care to an individual; and That identifies the individual or with respect to which there is a reasonable basis to believe the information can be used to identify the individual. Can be maintained in an electronic or any other form, and excludes educational records and employment records.

18 ePHI PHI that is produced, saved, transferred or received in an electronic form.

19 Direct and Indirect Identifiers
Name Geographic subdivisions smaller than a State Street Address City County Precinct Zip Code & their equivalent geocodes, except for the initial three digits Dates, except year Birth date Admission date Discharge date Date of death Telephone numbers Fax number

20 Direct and Indirect Identifiers
Address Social Security numbers Medical record numbers Health plan beneficiary numbers Account numbers Certificate/license numbers Vehicle identifiers and serial numbers, including license plate numbers Device identifiers and serial numbers Web universal resource locations (URLs) Internet Protocol (IP) address numbers Biometric identifiers, including finger and voice prints Full face photographic images and any comparable data Any other unique identifying number, characteristic, or code

21 HIPAA Standard of De-Identification

22 HIPAA Standard of De-Identification
§ Other requirements relating to uses and disclosures of protected health information. (a) Standard: de-identification of protected health information. Health information that does not identify an individual and with respect to which there is no reasonable basis to believe that the information can be used to identify an individual is not individually identifiable health information.

23 HIPAA De-Identification Methods

24 Safe Harbor

25 Safe Harbor To satisfy the Safe Harbor de-identification method:
All 18 identifiers of PHI must be removed from the data and, Must be the absence of actual knowledge by the CE or BA that the remaining information could be used alone or in combination with other information, to identify an individual. CEs or BA may assign a re-identification code but cannot disclose it to the data recipient. All of the 18 data categories must be removed in order for a data set to qualify as de-identified under the Safe Harbor method. If any of the above categories of data is needed to preserve utility, entities can use statistical methodologies to achieve the “very low risk” standard.

26 Actual Knowledge Actual knowledge is clear and direct knowledge that information remaining in data could be used, either alone or in combination with other information, to identify an individual who is the subject of the information. This does not include knowledge of studies of methods to identify de-identified information. However, if the CE or BA knew that the intended data recipient had a table that could identify patients, that would be actual knowledge. If the data recipient has a family member in the data and could recognize them. If there has been a rare clinical event that was publicized. PHI must be removed from free text as well as standardized data fields. De-identification is aimed only at protecting the patients not providers or their staff.

27 Unique Identifiers The Safe Harbor requires removal of unique identifying numbers, characteristics or codes: An identifying number could be a medical record number or a clinical trial number. An identifying characteristic “may be anything that distinguishes an individual and allows for identification,” such as a patient’s occupation - “former President of the United States.” A barcode in a patient’s medical record number is an example of an identifying code.

28 Expert Determination

29 Expert Determination A covered entity may determine that health information is not individually identifiable health information only if: A person with appropriate knowledge of and experience with generally accepted statistical and scientific principles and methods for rendering information not individually identifiable: Applying such principles and methods, determines that the risk is very small that the information could be used, alone or in combination with other reasonably available information, by an anticipated recipient to identify an individual who is a subject of the information; and Documents the methods and results of the analysis that justify such determination.

30 Who is an expert? There is no specific professional degree or certification program for identifying a data de-identification expert. Relevant expertise may be gained through education and experience. Experts may be found in the statistical, mathematical, or other scientific domains.  From an enforcement perspective, the Office of Civil Rights (OCR) would review the relevant professional experience and academic or other training, as well as actual experience of the expert using health information de-identification methodologies.

31 How do experts assess risk?

32 Principles used by experts in the determination of the identifiability of health information

33 Re-Identification

34 Re-Identification HIPAA regulations allow for the assignment of a unique code to de-identified health information for the purpose of re-identification by the CE or BA so long as: The code is not derived from, or related to, information about t he individual and is not otherwise capable of being translated in a way that facilitates identification of the individual, and The CE does not use or disclose the code for any purpose, and does not disclose the mechanism for any other purpose. Once data has been re-identified, it becomes subject to the Privacy Rule and is considered PHI.

35 Resources Guidance Regarding Methods for De-identification of PHI
DHCS Data De-identification Guidelines

Download ppt "Data De-identification"

Similar presentations

HIPAA Privacy Rule “Standards for Privacy of Individually Identifiable Health Information” 45 CFR 160 and 164* *http://www.hhs.gov/ocr/combinedregtext.pdf.

HIPAA Privacy Rule “Standards for Privacy of Individually Identifiable Health Information” 45 CFR 160 and 164* *
HIPAA and Public Health 2007 Epi Rapid Response Team Conference.

HIPAA and Public Health 2007 Epi Rapid Response Team Conference.
COBB/DOUGLAS COMMUNITY SERVICES BOARD Confidentiality and Privacy of Consumer Information.

COBB/DOUGLAS COMMUNITY SERVICES BOARD Confidentiality and Privacy of Consumer Information.
The Health Insurance Portability and Accountability Act Basic HIPAA Training For CMU workforce with access to PHI.

The Health Insurance Portability and Accountability Act Basic HIPAA Training For CMU workforce with access to PHI.
HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.

HIPAA – Privacy Rule and Research USCRF Research Educational Series March 19, 2003.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
HIPAA Health Insurance Portability and Accountability Act.

HIPAA Health Insurance Portability and Accountability Act.
1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.
HIPAA Requirements for Patient Oriented Research

HIPAA Requirements for Patient Oriented Research
Informed Consent.

Informed Consent.
 The Health Insurance Portability and Accountability Act of 1996.  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.

 The Health Insurance Portability and Accountability Act of  Federal Law designed to protect sensitive information.  HIPAA violations are enforced.
Health Insurance Portability & Accountability Act “HIPAA” To every patient, every time, we will provide the care that we would want for our own loved ones.

Health Insurance Portability & Accountability Act “HIPAA” To every patient, every time, we will provide the care that we would want for our own loved ones.
Professional Nursing Services.  Privacy and Security Training explains:  The requirements of the federal HIPAA/HITEC regulations, state privacy laws.

Professional Nursing Services.  Privacy and Security Training explains:  The requirements of the federal HIPAA/HITEC regulations, state privacy laws.
Protecting Client Data HIPAA, HITECH and PIPA Part 1A

Protecting Client Data HIPAA, HITECH and PIPA Part 1A
HIPAA Training Presentation for New Employees How did we get here? HIPAA Police 1.

HIPAA Training Presentation for New Employees How did we get here? HIPAA Police 1.
Training In HIPAA Privacy Regulations for Researchers and Research Staff Adapted from a presentation prepared by Human Subjects Division, University of.

Training In HIPAA Privacy Regulations for Researchers and Research Staff Adapted from a presentation prepared by Human Subjects Division, University of.
Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.
Privacy and Information Security Essentials

Privacy and Information Security Essentials
What does this form mean? HIPAA Authorization means prior written permission for use and disclosure of protected health information (PHI) from the information’s.

What does this form mean? HIPAA Authorization means prior written permission for use and disclosure of protected health information (PHI) from the information’s.
University of Miami1 HIPAA Survival Skills An Introduction to HIPAA and Research University of Miami Human Subjects Research Office October 31, 2006 Evelyne.

University of Miami1 HIPAA Survival Skills An Introduction to HIPAA and Research University of Miami Human Subjects Research Office October 31, 2006 Evelyne.

Similar presentations

Ads by Google