The Health Information Security and Privacy Collaborative (HISPC), a national project involving over 40 states and territories, has been one of the most comprehensive state-level engagements in recent years focusing on identifying and addressing the impact that variations in privacy and security policies, practices and laws have on the implementation of interoperable state and regional health information exchanges.
During its first phase (2006-2007) the project gathered state assessments of variations, solutions and implementation plans (as well as inter-state and national-level issues and recommendations) to address privacy and security barriers to interoperable health information exchanges.
As a result of intensive state-level deliberations and inter-state and national discussions, HISPC has collected a wealth of information on privacy and security issues associated with several domains, including health care delivery (treatment), payment, operations, research, RHIO-related activities, and Public Health.
The purpose of this Consortium Project was to build upon the work done by states during HISPC Phase 1 and conduct a systematic, in-depth analysis of the Public Health Domain covered during the HISPC project. The goal was to identify, extract, document and analyze all privacy-related variations, solutions and implementation plans reported by states and that directly involved or affected public health practice. Building upon the detailed state documentation of issues, variations, barriers, solutions and implementation plans, the project attempted to identify best practices and guidance recommendations on how to address those privacy-related issues directly affecting public health information exchanges and that can be applied across states. Multi-state and national issues were also addressed.
The project was divided into two components:
- Policies, Practices and State Laws Assessment Report
- States' Analysis of Solutions and Implementations Report