From now through November, HIPAA.com is providing a run through of HIPAA transaction & code set, privacy, and security definitions, along with relevant HITECH Act definitions pertaining to breach notification, securing of protected health information, and electronic health record (EHR) standards development and adoption. These definitions are key to understanding the referenced HIPAA and HITECH Act enabling regulations that are effective now and that will require compliance by covered entities and business associates now or in the months ahead, as indicated in HIPAA.com’s timeline. Each posting will contain three definitions, with a date reference to the Federal Register, Code of Federal Regulations (CFR), or statute, as appropriate.
Exploring HIPAA and HITECH Act Definitions: Parts 6-10, include definitions from:
American Recovery and Reinvestment Act of 2009 (February 17, 2009, pp.228-229),
Health Information Technology for Economic and Clinical Health Act,
Title XIII—Health Information Technology,
Subtitle A—Promotion of Health Information Technology,
Section 13101—ONCHIT [Office of the National Coordinator for Health Information Technology]; Standards Development and Adoption,
Title XXX—Health Information Technology and Quality,
Section 3000—Definitions (also designated as 42 USC 300jj).
HIT Policy Committee
Such Committee established under section 3002(a).
HIT Standards Committee
Such Committee established under section 3003(a).
Individually Identifiable Health Information
Has the meaning given such term in section 1171(6) of the Social Security Act:
“Any information, including demographic information collected from an individual, that—
(A) Is created or received by a health care provider, health plan, employer, or health care clearinghouse; and
(B) Relates to the past, present, or future physical or mental health or condition of an individual, the provision of health care to an individual, or the past, present, or future payment for the provision of health care to an individual, and—
- Identifies the individual; or
- With respect to which there is a reasonable basis to believe that the information can be used to identify the individual.”
 HIT Standards Committee (Establishment).