Health Information Exchanges

HIE stands for Health Information Exchange. An HIE allows medical records to be shared electronically. HIE relies on using networking technologies to enable your doctor to share records with another health care provider over the Internet, instead of by fax. As a result, doctors participating in an HIE may have a much more complete picture of your medical history to work from, even if they have only had limited or even in some cases, no previous contact with you as a patient.

WPF has done a lot of work on HIE privacy. Our work is linked below and included in the blog posts.

World Privacy Forum’s HIE Tips, Glossary, and FAQ for Patients:

This FAQ, glossary, and tipsheet about Health Information Exchanges is designed to work in tandem with our HIE map and directory of California HIEs, available here. If you have questions about HIPAA beyond those answered here, please see our extensive resource, A Patient’s Guide to HIPAA.

WPF’s Interactive Map of HIE’s in California:

This map identifies Health Information Exchanges in California. HIEs are an increasingly popular way for hospitals, pharmacies, labs, and emergency room physicians to share patient information. Some HIEs just share information within one hospital network, some share information across many hospitals or physicians in a region, and some HIEs share information across the state. If your health information is being shared through an HIE, your lab test results, medications, medical history, or other clinical information related to your health care may be included in the sharing. It’s important for you to know when your records are being shared, where, and what controls you have over that.

More HIE information are in the blog posts below.

Jul 15 2013

World Privacy Forum’s HIE Tips, Glossary, and FAQ for Patients

Aug 01 2011

Public Comments: August 2011 – Proposed changes to the HIPAA Privacy Rule regarding Accounting of Disclosures under the Health Information Technology for Economic and Clinical Health Act

The World Privacy Forum today filed its comments on the proposed changes to the HIPAA privacy rule, supporting some proposed changes and suggesting additional changes to enhance patient choice. In particular, the WPF supports the new patient right to an access report that has been added (p. 4), and has requested that Health Information Exchanges also be required to provide accountings of disclosures to patients (p. 18). The WPF generally argued that HHS needs to look forward and allow changes in information technology to fully benefit patients by providing the facility for more accounting rather than less (pp. 2-3). If the HIPAA rule gives patients a greater ability to monitor how their information is used and disclosed, patients will pay attention and requests for accounting of disclosures will become more common.

Apr 07 2011

WPF Comments on Health Information Exchanges in California

Joint Comments on HIEs — California has proposed regulations for health information exchange projects in the state. WPF has submitted comments encouraging more privacy protections, and we are joined in our comments by Privacy Activism and the Center for Digital Democracy. One key request in the comments is that California not allow patient consent to be waived in HIE projects. We are also requesting that California create a unified web listing of its HIE projects for increased transparency and to facilitate patient access to HIE information and policies.

Apr 01 2011

Public Comments: April 2011 – WPF Files Joint Comments on California Health Information Exchanges

California has proposed regulations for health information exchange projects in the state. WPF has submitted comments encouraging more privacy protections, and we are joined in our comments by Privacy Activism and the Center for Digital Democracy. One key request in the comments is that California not allow patient consent to be waived in HIE projects. We are also requesting that California create a unified web listing of its HIE projects for increased transparency and to facilitate patient access to HIE information and policies.

Jun 15 2010

Data broker presentation at CFP conference

Data brokers — WPF will be speaking at the CFP conference on two panels. On June 15, Pam Dixon will participate in a plenary session on data brokers. On June 16, Dixon will moderate a health care privacy panel. This panel will focus on electronic health care in the state of California and the current privacy issues in electronic health exchange.

New Report: Risky Analysis: Assessing and Improving AI Governance Tools

We are pleased to announce the publication of a new WPF report, “Risky Analysis: Assessing and Improving AI Governance Tools.” This report sets out a definition of AI governance tools, documents why and how these tools are critically important for trustworthy AI, and where these tools are around the world. The report also documents problems in some AI governance tools themselves, and suggests pathways to improve AI governance tools and create an evaluative environment to measure their effectiveness. AI systems should not be deployed without simultaneously evaluating the potential adverse impacts of such systems and mitigating their risks, and most of the world agrees about the need to take precautions against the threats posed. The specific tools and techniques that exist to evaluate and measure AI systems for their inclusiveness, fairness, explainability, privacy, safety and other trustworthiness issues — called in the report collectively AI governance tools – can improve such issues. While some AI governance tools provide reassurance to the public and to regulators, the tools too often lack meaningful oversight and quality assessments. Incomplete or ineffective AI governance tools can create a false sense of confidence, cause unintended problems, and generally undermine the promise of AI systems. The report contains rich background details, use cases, potential solutions to the problems discussed in the report, and a global index of AI Governance Tools.
National IDs Around the World — Interactive map

About this Data Visualization: This interactive map displays the presence...
Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

This comprehensive report and proposed bill text is focused on the Privacy Act of 1974, an important and early Federal privacy law that applies to the government sector and some contractors. The Privacy Act was written for the 1970s information era -- an era that was characterized by the use of mainframe computers and filing cabinets. Today's digital information era looks much different than the '70s: smart phones are smarter than the old mainframes, and documents are now routinely digitized and stored and perhaps even analyzed in the cloud, among many other changes. The report focuses on why the Privacy Act needs an update that will bring it into this century, and how that could look and work. This work was written by Robert Gellman, and informed by a two-year multi-stakeholder process.