De-identification involves the removal of personally identifying information in order to protect personal privacy.

In terms of health information, data is considered de-identified under the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule when a number of specified data elements are removed.

Data is de-identified when

●  All 18 HIPAA-specific direct and indirect identifiers have been removed (Safe Harbor method)

●  Data is determined by expert opinion to have a low probability of re-identification.

Example

Interviewer:  When was the first time you heard about the [Organization]?

Interviewee:   Ten years ago. I was a student at [University] and one of my professors told us about [Organization] and their work.

To view a complete example click on the link below.

Individually identifiable health information, including demographic information, that is created or received by a covered entity and that relates to the past, present, or future physical or mental health of an individual, provision of healthcare to an individual, or past, present, or future payment for the provision of healthcare to an individual.

The presence of at least one of 18 HIPAA-designated direct and indirect identifiers in a data set makes the whole data set Protected Health Information.

1. Name

2. Social Security numbers

3. Telephone numbers

4. Addresses and all geographic information smaller than a state

5. All elements of dates (except year), including date of: birth, admission, discharge, and death; and all ages over 89

6. Fax numbers

7. E-mail addresses

8. Medical record numbers

9. Health Plan Beneficiary numbers

10. Account numbers

11. Certificate/license numbers

12. Vehicle identifiers and serial numbers, including license plate numbers

13. Device identifiers and serial numbers

14. Web Universal Resource Locators (URLs)

15. Internet Protocol (IP) addresses

16. Biometric identifiers, including finger and voice prints

17. Full face photographic images and comparable images

18. Any other unique identifying number, characteristic, or code: Any code or other means of record identification that is derived from PHI that must be removed in order for the data to be considered de-identified per the Safe Harbor method.

Entities covered by HIPAA may share a limited data set for research purposes permitted by the Privacy Rule under one indisputable condition. All recipients must bound by a data use agreement with the originator of the data.

If you are a researcher seeking to access, obtain, or use PHI from a HIPAA covered entity for research purposes, then you may require  a signed authorization for that use from the patient/participant, or otherwise justify an exception from that requirement.

In either case, you will be required to have an IRB-approved protocol.

Regulatory Resources

Health Insurance Portability and Accountability Act of 1996 (HIPAA) (Pub. L. No. 104-191, § 264 (1996), codified at 42 U.S.C. § 1320d; Standards for Privacy of Individually Identifiable Health Information, 45 C.F.R. § 160 (2002), 45 C.F.R. § 164 subpts. A, E (2002).