Privacy is the right of an individual to keep oneself and one’s information concealed from unauthorized access and view by others.
As the world moves to electronic health records, albeit at varying stages, health data is being used for a wider range of purposes, including improving population health, disease surveillance, and the study of health economics. There also have been dramatic changes in how patients, consumers, and individuals access and use their health data. While health information is first about delivering health and wellness services, it is increasingly shared across platforms and providers. Unfortunately, sometimes, this sharing is without the knowledge, understanding, or consent of the patient. Headlines in the U.S. over the past year certainly affirm these concerns.
While this transformation is good for the advancement of healthcare, through goals like improving access, reducing costs, and empowering consumers/patients with better access to their own data, it presents new challenges for health information professionals.
New technologies such as machine learning, artificial intelligence, and biometric authentication will no doubt further compound these issues, leading to new policies and regulations to support the privacy of health information. And, as is obvious, regulations and policies can’t keep pace with new technology and the innovation that is unfolding.
These changes require principled stewardship by health information management (HIM) professionals and policymakers to implement good privacy practices across the healthcare continuum, by private, public, and community healthcare providers and data users.
The International Federation of Health Information Management Associations’ (IFHIMA’s) recent white paper was published with the intent to assist HIM professionals, policymakers, and regulators navigate the changing landscape of health information privacy.
Throughout the paper, we discuss some principles that guide how information is managed, and the impact of not attending to these principles. One of the key tenets is that privacy and trust go hand in hand.
Trust and Stewardship
Trust between the patient/consumer and their provider, healthcare organization, or pharmacy is essential to health and well-being. When personal health information (PHI) is compromised, trust is eroded, and a loss of trust can be detrimental to the patient-provider relationship.
Effective stewardship is an important obligation for all who create, use, and manage health information. Preserving confidentiality of health information is an indisputable stewardship obligation.
Standards for crafting stewardship frameworks for governing health and other sensitive information in physical or even digital form have been around since the 1970s, with the Caldecott Principles of the United Kingdom, the Principles of Fair Information Practice (FIPPS) of the United States, and the Organization for Economic Co-operation and Development (OECD) Privacy Framework.
These decades-old principles continue to serve privacy practices around the globe.
Our Mobile, Digital World
We live in an increasingly mobile world. Data, like individuals, move from country to country, adding to the challenge of keeping health information private across boundaries. Healthcare organizations are obligated to understand and respond to regulations outside of their service areas, as health information is increasingly shared across jurisdictions and nations.
Recommendations
IFHIMA recommends that HIM professionals consider the following when privacy regulations are being explored or revised in your countries:
Following the release of the Centers for Medicare & Medicaid Services (CMS) proposed Physician Fee Schedule (PFS) for 2026, outpatient evaluation and management (E&M) coding
Generative artificial intelligence (AI) is reshaping health information management (HIM) at a pace few anticipated. Hospitals and health systems are integrating large language models (LLMs)
Please log in to your account to comment on this article.
Accurately determining the principal diagnosis is critical for compliant billing, appropriate reimbursement, and valid quality reporting — yet it remains one of the most subjective and error-prone areas in inpatient coding. In this expert-led session, Cheryl Ericson, RN, MS, CCDS, CDIP, demystifies the complexities of principal diagnosis assignment, bridging the gap between coding rules and clinical reality. Learn how to strengthen your organization’s coding accuracy, reduce denials, and ensure your documentation supports true medical necessity.
Denials continue to delay reimbursement, increase administrative burden, and threaten financial stability across healthcare organizations. This essential webcast tackles the root causes—rising payer scrutiny, fragmented workflows, inconsistent documentation, and underused analytics—and offers proven, data-driven strategies to prevent and overturn denials. Attendees will gain practical tools to strengthen documentation and coding accuracy, engage clinicians effectively, and leverage predictive analytics and AI to identify risks before they impact revenue. Through real-world case examples and actionable guidance, this session empowers coding, CDI, and revenue cycle professionals to shift from reactive appeals to proactive denial prevention and revenue protection.
Sepsis remains one of the most frequently denied and contested diagnoses, creating costly revenue loss and compliance risks. In this webcast, Angela Comfort, DBA, MBA, RHIA, CDIP, CCS, CCS-P, provides practical, real-world strategies to align documentation with coding guidelines, reconcile Sepsis-2 and Sepsis-3 definitions, and apply compliant queries. You’ll learn how to identify and address documentation gaps, strengthen provider engagement, and defend diagnoses against payer scrutiny—equipping you to protect reimbursement, improve SOI/ROM capture, and reduce audit vulnerability in this high-risk area.
Only ICD10monitor delivers what you need: updates on must-know changes associated with the FY26 IPPS, including new ICD-10-CM/PCS codes, CCs/MCCs, and MS-DRGs, plus insights, analysis and answers to your questions from two of the country’s most respected subject matter experts.
Get clear, practical answers to Medicare’s most confusing regulations. Join Dr. Ronald Hirsch as he breaks down real-world compliance challenges and shares guidance your team can apply right away.
Federal auditors are zeroing in on Inpatient Rehabilitation Facility (IRF) and hospital rehab unit services, with OIG and CERT audits leading to millions in penalties—often due to documentation and administrative errors, not quality of care. Join compliance expert Michael Calahan, PA, MBA, to learn the five clinical “pillars” of IRF-PPS admissions, key documentation requirements, and real-life case lessons to help protect your revenue.
During this essential RACmonitor webcast Michael Calahan, PA, MBA Certified Compliance Officer, will clarify the rules, dispel common misconceptions, and equip you with practical strategies to code, document, and bill high-risk split/shared, incident-to & critical care E/M services with confidence. Don’t let audit risks or revenue losses catch your organization off guard — learn exactly what federal auditors are looking for and how to ensure your documentation and reporting stand up to scrutiny.
Learn how to navigate the proposed elimination of the Inpatient-Only list. Gain strategies to assess admission status, avoid denials, protect compliance, and address impacts across Medicare and non-Medicare payors. Essential insights for hospitals.
Prepare for the 2025 CMS IPPS Final Rule with ICD10monitor’s IPPSPalooza! Click HERE to learn more
Get 15% OFF on all educational webcasts at ICD10monitor with code JULYFOURTH24 until July 4, 2024—start learning today!
CYBER WEEK IS HERE! Don’t miss your chance to get 20% off now until Dec. 1 with code CYBER25
CYBER WEEK IS HERE! Don’t miss your chance to get 20% off now until Dec. 2 with code CYBER24
