Privacy and Security

There are many groups and initiatives on the national scene addressing privacy and HIT.  Below are links to some resources that address privacy and HIT.

APA HIPAA Privacy Rule Manuals
These manuals are written specifically to assist psychiatric practices with compliance under the HIPAA rules and include useful cross references to other APA privacy resources and guidelines.

Guide to Privacy and Security of Health Information (ONC) 
This handbook published by the Office of the National Coordinator for Health IT (ONC) includes several resources including a 10-step plan to help physician practices integrate privacy and security into their EHRs and daily operations.

Your Mobile Device and Health Information Privacy and Security (ONC)
Physicians, health care providers and other health care professionals are using smartphones, laptops and tablets in their work. The U.S. Department of Health and Human Services has gathered these tips and information to help you protect and secure health information patients entrust to you when using mobile devices. 

Health and Human Services HealthIT Privacy & Security Page

Outlines state and federal activities and provides additional resources on privacy and security.

Health and Human Services Guidance Materials for Consumers: Health Information Privacy
Information and handouts for patients on HIPAA, health information privacy

Patient Privacy Rights

Private group dedicated to ensuring Americans control all access to their health records.

A Delicate Balance: Behavioral Health, Patient Privacy and the Need to Know (CHCF)
Policy paper with legal analysis of federal and state laws pertaining to privacy of mental health information, as well as three illustrative scenarios.

Supporting Integration of Behavioral Health Care through Health Information Exchange 
This report by the Colorado Regional Health Information Organization (CORHIO) contains discussion and recommendations pertaining to  integrating behavioral and physical health information through health information exchange (HIE), emphasizing “the key underpinnings of patient protection, safeguarding patient privacy, ensuring confidentiality, and encouraging trust between and amongst providers and consumers.”

Health Information Privacy: Guidance on Risk Analysis (HHS)
This series of guidance documents will assist organizations in identifying and implementing the most effective and appropriate administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of electronic protected health information.