The IT Law Wiki
The IT Law Wiki

Definition[]

General[]

De-identified data

describes records that have a re-identification code and have enough personally identifiable information removed or obscured so that the remaining information does not identify an individual and there is no reasonable basis to believe that the information can be used to identify an individual. The re-identification code may allow the recipient to match information received from the same source.[1]

Health data[]

De-identified data is

the elimination of all identifiers as enumerated under HIPAA under the safe-harbor method (i.e., a patient's name, medical record number, social security number, and other data fields that directly link a patient to their data). There is potentially another approach that involves having a statistician determine that the ability (likelihood) of being able to combine data with other public sources of information and successfully identify an individual is extremely small.[2]

References[]

See also[]