What is meant by de-identified?

Table of Contents

1 What is meant by de-identified?
2 What is de-identified data in research?
3 What are examples of direct identifiers that must be removed from research subjects records in order to comply with the use of a limited data set?
4 Is De-identified data personal data?
5 What is de-identified patient data and why is it important?
6 What is the Expert Determination Method for de-identification?

What is meant by de-identified?

De-identification means that a person’s identity is no longer apparent or cannot be reasonably ascertained from the information or data. De-identified information is information from which the identifiers about the person have been permanently removed, or where the identifiers have never been included.

What data elements about patients must be removed to qualify as de-identified information?

The following data must be removed for de-identification: Name. Location; all geographic subdivisions smaller than a state, including street address, city, county, precinct, zip code, and their equivalent geocodes.

What are some of the issues with de-identification of data?

Risks to individuals can remain in de-identified data. These risks include allowing inferences about individuals in the data without re-identification, and impacts on groups represented in the data.

What is de-identified data in research?

De-identification is the process used to prevent someone’s personal identity from being revealed. For example, data produced during human subject research might be de-identified to preserve the privacy of research participants.

Is De-identified data personal information?

De-identification protects the privacy of individuals because once de- identified, a data set is considered to no longer contain personal information. If a data set does not contain personal information, its use or disclosure cannot violate the privacy of individuals.

What are the elements that must be removed in order to satisfy the safe harbor method of de-identification?

According to HHS, safe harbor involves removing 18 identifiers (see sidebar) of the individual and of his or her relatives, employers, and household members, leaving behind “no actual knowledge [or] residual information [that] can identify [the] individual.” These include names, Social Security numbers, birth dates.

What are examples of direct identifiers that must be removed from research subjects records in order to comply with the use of a limited data set?

The following direct identifiers must be removed for PHI to qualify as a limited data set: (1) Names; (2) postal address information, other than town or city, state, and ZIP code; (3) telephone numbers; (4) fax numbers; (5) email addresses; (6) social security numbers; (7) medical record numbers; (8) health plan …

Is de-identified data personal information?

Is de-identified data personal data?

De-Identification Under the GDPR Pseudonymous data is personal data that cannot be attributed to a specific individual without the use of additional information (which must be kept separate and subject to technical and organizational safeguards).

Is De-identified data personal data?

Is aggregated data de-identified?

Aggregate data tables are usually considered to be de-identified data under HIPAA.

Is de-identified data considered PHI?

The HIPAA Privacy Rule states that once data has been de-identified, covered entities can use or disclose it without any limitation. The information is no longer considered PHI, and does not fall under the same regulations and restrictions as PHI.

What is de-identified patient data and why is it important?

Why is De-identified Patient Data so Important? e-identified patient data can be used to improve care, estimate the costs of care, and support public health initiatives. Scientists have been doing just this for years. Among many notable examples:

How do I de-identify patient data under HIPAA?

Geographic subdivisions smaller than a state (e.g. street address, city and ZIP code) According to HIPAA, there are 3 acceptable ways to de-identify patient data. The first is the “safe harbor” option, in which all 18 identifiers are removed.

Is de-identified data the same as protected health information (PHI)?

No. De-identified data is not the same thing as Protected Health Information (PHI). PHI is personally identifiable health information. This is exquisitely sensitive, private, and confidential, and it is covered by the HIPAA Privacy Rule.

What is the Expert Determination Method for de-identification?

In §164.514 (b), the Expert Determination method for de-identification is defined as follows: (1) A person with appropriate knowledge of and experience with generally accepted statistical and scientific principles and methods for rendering information not individually identifiable:

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.