A covered entity may use and disclose Protected Health Information (PHI) only as described in the Privacy Rule. However, not all health information held by a covered entity is considered PHI. De-identified health information is not considered PHI and therefore not protected by the Privacy Rule. To learn more about the processes for de-identifying data, please read our Fast Facts
Enter the password to open this PDF file:
.png)