|“||involves the removal of protected health information (PHI) (e.g., name, date of birth, and Social Security number) that can be used to identify an individual.||”|
|“||[t]o ensure that individuals' records have all data elements removed before the data is shared for statistical, research, public health, or other reasons that do not benefit the data subject directly, and for which no authorization has been provided, such that there is no reasonable basis to believe that the information can be used to identify an individual. De-identification can be accomplished by removing the data permanently (anonymization); permanently replacing each data element removed with a placeholder, sometimes called a "token" (pseudonymization); or replacing each datum with a unique token and maintaining a record (usually through a third party) such that it is possible to re-identify the individual through appropriate channels, such as having a third party contact the individual's care provider (reversible pseudonymization, or re-identification).||”|
HIPAA Privacy Rule
The requirements for de-identification under the HIPAA Privacy Rule are explicitly laid out in Section 45 C.F.R. 164.514, Other requirements relating to uses and disclosures of health information, subsections (a) (Standard: de-identification of health information), (b) (Implementation specifications: requirements for de-identification of health information), and (c) (Implementation specifications: re-identification).
- ISO/TS 25237-2008.
- Prescription Drug Data: HHS Has Issued Health Privacy and Security Regulations but Needs to Improve Guidance and Oversight, at 7.
- NISTIR 7497, Glossary, at C-2.
- De-identified data
- De-identified information
- De-identified health information
- De-identified protected health information