Policy Committee OKs Privacy, Security Recommendations

On Friday, the Health IT Policy Committee approved recommendations from the recently created Privacy and Security Team, including the establishment of health data exchange credentials and personal health information policies, Healthcare IT News reports.

The 15-member Privacy and Security Tiger Team was established earlier this month by the Office of the National Coordinator for Health IT to address urgent privacy and security issues. The group includes members from the Health IT Policy and Standards committees, as well as members of the National Committee on Vital and Health Statistics.

The Policy Committee unanimously approved recommendations to establish digital exchange credentials that verify a health care provider's identity.

The panel also approved recommendations to allow authorized credentialing service providers to conduct the verification process and to give health providers and consumers with reassurance that the credentialing is being conducted by a trustworthy group.

According to the recommendations, ONC would play a role in developing and enforcing rules and policies about the credentialing process, and states could impose additional regulations on the credentialing service providers.

The Tiger Team also recommended that policies be developed to limit retention of personal health information and restrict the use and re-use of such data.

Next Steps for Tiger Team

Paul Egerman, co-chair of the Tiger Team, said that the group on June 29 will hold a consumer choice technology hearing to discuss issues, such as

• Consumer consent;
• Sensitive data; and
• Interstate exchange.

The panel then will report to the HIT Policy Committee on the hearing on July 21 and provide a final report on August 19 (Manos, Healthcare IT News, 6/26).