HMIS Privacy and Security Standards

July 30, 2009

The privacy and security standards, as described in the 2004 Data and Technical Standards Notice, seek to protect the confidentiality of personal information while allowing for reasonable, responsible, and limited uses and disclosures of data. These privacy and security standards are based on principles of fair information practices and on security standards recognized by the information privacy and technology communities. The standards were developed after careful review of the Health Insurance Portability and Accountability Act (HIPAA) standards for securing and protecting patient information. Communities are expected to continue to use the 2004 Notice to implement their HMIS. (See page 45927, section 4 for HMIS Privacy and Security Standards)