Related Insights

CDT Comments to Centers for Medicare & Medicaid Services on Interoperability, Patient Access, and Privacy

In June 2019, CDT submitted comments on the Department of Health and Human Services Centers for Medicare and Medicaid Services’s proposed rule on interoperability and patient access. The rules would require covered entities to provide access to patient records through an application program interface to third parties designated by the patient. While CDT applauds the goal of giving patients better access to and ability to port their health information, we are concerned about the lack of privacy protections covering this sensitive information once it leaves the hands of an entity covered by the Health Insurance Portability and Accountability Act Privacy Rule.

Read More

Report: Balancing the Scale of Student Data Deletion and Retention in Education

Historically, the education system has erred on the side of retaining data. There are many ways that data can can be useful in improving student outcomes, but indefinite data retention does not come without risk or cost. Education leaders and the companies they work with have to balance student data deletion and retention. This brief explores this issue and offers recommendations that protect student privacy while supporting effective data use that improves student outcomes.

Read More