1. Purpose
    1. This Hoag-Enabled Health Information Exchange ("HIE") policy on patient privacy considers patients' rights and expectations while balancing the need for health care providers to have information that enables them to make informed decisions and ultimately provide better quality health care services.
    2. In order to maintain an appropriate level of security and to protect patient data from unauthorized access and disclosure, this policy defines the access controls and parameters necessary to achieve this protection and to ensure reliable operation of the HIE.
  2. Definitions
  3. Policy
  4. Restrictions on the Use and Disclosure of Individually Identifiable Health Information
  5. Patient/Consumer Notification
  6. Patient/Consumer Opt Out
  7. Amendment of Data
  8. Breach Notification
  9. Access Controls
  10. Audit Controls
  11. Penalties for Inappropriately Accessing Personally Identifiable Health Information