HIPAA Q&A: You’ve got questions. We’ve got answers!
HIM-HIPAA Insider, April 7, 2014
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
In last week’s HIPAA Q&A, our HIPAA expert mentioned that it was appropriate to send emails containing PHI as long as your organization’s server is secured. In instances where a server is not secured, patients should be de-identified. For example, you could refer to someone as "the patient in room 301-A" because a room number is not considered an identifier under HIPAA. In response, one of our readers submitted a follow-up question about identifiers.
Q: My organization views a patient’s room number as an identifier because we think this is information that someone could use to identify the patient. Please explain why this is not considered an identifier? A: A patient’s room number is not considered “identifiable” under the HIPAA Privacy Rule. PHI is considered identifiable if it contains any one of 18 identifiers of individuals and their family members, employers, or household members, including:
- Names
- Geographic subdivisions smaller than a state
- All elements of dates (except for year) for birth, admission, discharge, and death
- All ages over 89, including year
- Telephone numbers
- Fax numbers
- Email addresses
- Social Security numbers
- Medical record numbers
- Health plan beneficiary numbers
- Account numbers
- Certificate/license numbers
- Vehicle identifiers
- Device identifiers
- URLs
- IP addresses
- Biometric identifiers, including fingerprints and voiceprints
- Full-face photographas
Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!
Related Products
-
Briefings on APCs
Worried about the complexities of the new rules under OPPS and APCs? Briefings on APCs helps you understand the new rules...
-
HIM Briefings
Guiding Health Information Management professionals through the continuously changing field of medical records and toward a...
-
Briefings on Coding Compliance Strategies
Submitting improper Medicare documentation can lead to denial of fees, payback, fines, and increased diligence from payers...
-
Briefings on HIPAA
How can you minimize the impact of HIPAA? Subscribe to Briefings on HIPAA, your health information management resource for...
-
APCs Insider
This HTML-based e-mail newsletter provides weekly tips and advice on the new ambulatory payment classifications regulations...
Most Popular
- Articles
-
- Duke Health to begin reusing N95 masks
- Don't forget the three checks in medication administration
- Note similarities and differences between HCPCS, CPT® codes
- Increase patient satisfaction by improving your discharge process
- OB services: Coding inside and outside of the package
- Understanding nursing roles in quality improvement
- Understand and overcome language, cultural barriers
- Practice the six rights of medication administration
- Prevent dehydration with nursing interventions
- Complications from immobility by body system
- E-mailed
-
- Duke Health to begin reusing N95 masks
- Duke Health to Begin Reusing N95 masks
- 7 ways to address nurse shortage issues
- Use patient safety coaches to boost compliance
- Tip: Understand revenue codes
- Don't forget the three checks in medication administration
- Coding for biopsies in ICD-10-PCS
- CMS suspends restrictions on care venues as providers tackle COVID-19 surges
- Charging CPR and injections or infusions with critical care
- Searched
