• Home
  • Blog
  • Contact
HIPAA ComplianceHIPAA Compliance
HIPAA ComplianceHIPAA Compliance
  • Home
  • Blog
  • Contact

The Definition of Personal Health Record

May 11, 2009 Health IT and HITECH No Comments

This posting is one of several that outline the HITECH privacy provisions of the American Recovery and Reinvestment Act that President Obama signed into law on Tuesday, February 17, 2009, in Denver, CO. Here, we reproduce the definitions that appear in Subtitle D—Privacy, Section 13400. Definitions, that appear in the Conference Report on page H1345 of Congressional Record—House, February 12, 2009. These definitions are critical in understanding the content of the new HITECH privacy provisions and how they relate to existing HIPAA Administrative Simplification Privacy Rule standards.

HIPAA Privacy Definitions:

Breach
Business Associate
Covered Entity
Disclosure
Electronic Health Record
Health Care Operations
Health Care Provider
Health Plan
National Coordinator
Payment
Personal Health Record
Protected Health Information
Secretary
Security
State
Treatment
Use
Vendor Of Personal Health Records

PERSONAL HEALTH RECORD

The term ‘personal health record’ means an electronic record of PHR identifiable health information (as defined in section 13407(f)(2)5) on an individual that can be drawn from multiple sources and that is managed, shared, and controlled by or primarily for the individual.


5 “The term ‘PHR identifiable health information’ means individually identifiable health information, as defined in section 1171(6) of the Social Security Act (42 U.S.C. 1320d(6)), and includes, with respect to an individual, information (A) that is provided by or on behalf of the individual; and (B) that identifies the individual or with respect to which there is a reasonable basis to believe that the information can be used to identify the individual.” See Congressional Record-House, February 12, 2009, p.H1348, which is available on the hipaa.com Web site.

Section 1171(6) of the Social Security Act is available online at: http://www.ssa.gov/OP_Home/ssact/title11/1171.htm. Subsection 6 states: Individually identifiable health information.—The term “individually identifiable health information” means any information, including demographic information collected from an individual, that—(A) is created or received by a health care provider, health plan, employer, or health care clearinghouse; and (B) relates to the past, present, or future physical or mental health or condition of an individual, the provision of health care to an individual, or the past, present, or future payment for the provision of health care to an individual, and—(i) identifies the individual; or (ii) with respect to which there is a reasonable basis to believe that the information can be used to identify the individual.

Tags: breachbusiness associatecovered entityDiscloseDisclosureelectronic health recordHealth Care OperationsHealth Care Providerhealth planNational CoordinatorPaymentpersonal health recordprotected health informationSecretarySecurityStateTreatmentUseVendor of Personal Health Records
No Comments
Share
0

You also might be interested in

Exploring HIPAA and HITECH Act Definitions: Part 9

Nov 23, 2009

From now through November, HIPAA.com is providing a run through[...]

One Week from Today: 5010/D.0 Final Rule Effective Date

Mar 10, 2009

They’re coming: the Ides of March (the 14th); NCAA Basketball[...]

Exploring HIPAA and HITECH Act Definitions: Part 15

Dec 23, 2009

From now through December, HIPAA.com is providing a run through[...]

Leave a Reply Cancel Reply

Categories

  • 5010
  • American Recovery and Reinvestment Act
  • Enforcement
  • GINA
  • Health Care Reform
  • Health IT and HITECH
  • HIPAA Law
  • Identifiers
  • Meaningful Use
  • Privacy
  • Red Flags Rules
  • Security
  • Transactions & Code Sets
  • Uncategorized

Recent Posts

  • Contracting with Vendors that are NOT HIPAA Business Associates: Best Practices
  • HIPAA Breach: Who You Gonna Call?
  • Can I Be Sued for a HIPAA Violation?
  • Business Associate Agreements – a First Look at Indemnification
  • Gmail, Google Apps for Business HIPAA Business Associate Agreements

Archives

Contact Us

We're currently offline. Send us an email and we'll get back to you, asap.

Send Message
HIPAA- Health Insurance Portability Accountability Act

© 2023 · hipaa.com

Prev Next