De-Identified Medical Data and HIPAA

Sunday, 16 February 2014
Regency C (Hyatt Regency Chicago)
Bradley Malin , Vanderbilt University, Nashville, TN
The Privacy Rule of HIPAA allows such data to be shared under different scenarios -- all of which relate to providing a "minimal risk of re-identification." While HIPAA provides this operational privacy standard in words, the technical details are often misunderstood. This talk will present ways to measure risks of re-identification in datasets, and explore methods for sharing data which adhere to the HIPAA standard while remaining practically useful. He should also discuss whether blanket policies for data protection may or may not be useful.