What is Protected Health Information (PHI)?

Privacy, What is Protected Health Information (PHI)


Protected Health Information (PHI)

The Privacy Rule protects all “individually identifiable health information” held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper, or oral.  Privacy Rules call this information, protected health information (PHI).

Protected Health Information (PHI) is information, including demographic data, which relates to:

  • the individual’s past, present or future physical or mental health or condition,
  • the provision of health care to the individual, or
  • the past, present, or future payment for the provision of health care to the individual,
  • the individual’s identity, including Personally Identifiable Information (PII), or for which there is a reasonable basis to believe it can be used to identify the individual.

Related References:

What is Personally Identifiable Information (PII)?

Personally Identifiable Information (PII)

Personally Identifiable Information (PII)

Personally Identifiable Information (PII)

Personally Identifiable Information (PII) is any information that can be used to identify, contact, or locate an individual, either alone or combined with other easily accessible sources. It includes information that is linked or linkable to an individual, such as medical, educational, financial and employment information.

Furthermore, Personally Identifiable Information (PII) is information, which:

  •  directly identifies an individual (e.g., name, address, social security number or other identifying number or code, telephone number, email address, etc.) or
  •  indirectly identifies an individual (These data elements may include a combination of gender, race, birth date, geographic indicator, and other descriptors).
  • permits the physical or online contact of a specific individual.

Related Reference

What is Non-Public Information (NPI)?

Privacy, What is Non-Public Information (NPI)


Non-Public Information (NPI)

Nonpublic Information (NPI), also known as “Nonpublic personal information” (NPI)” is used within the financial industry and there clients to identify a broad group of information , including Personally Identifiable Information (PII) and Protected Health Information (PHI) and other information with legal disclosure constraints.  This items includes:

  • any information an individual gives you to get a financial product or service (for example, name, address, income, Social Security number, or other information on an application);
  • any information you get about an individual from a transaction involving your financial products or services. For example; the fact that an individual is your consumer or customer, account numbers, payment history, loan or deposit balances, and credit or debit card purchases; or
  • any information about an individual in connection with providing a financial product or service (for example, information from court records or from a consumer report).

Related References