Ability or means needed to read, write, modify, or communicate data/information.

A contract between at least two parties that outlines confidential material, knowledge, or information that the parties wish to share with one another for certain purposes, but wish to restrict access to by third parties. It is a contract through which the parties agree not to further disclose information covered by the agreement.

a legally binding contract that governs the transfer and use of non-public or restricted-use data between entities, typically outlining the terms, limitations, and obligations for both the data provider and recipient, especially when dealing with sensitive information like Protected Health Information (PHI).

Digital versions of patients' paper charts and can be real-time, patient-centered records. They make many different types of clinical and patient information available instantly, "whenever and wherever it is needed". EHRs collate everything about a patient's health including medical history, diagnoses, medications, immunization dates, allergies, radiology images, and laboratory test results.

A secure, electronic system that allows healthcare providers to share patient medical information electronically. This enables providers to access a patient's medical history, allergies, medications, and other vital information, regardless of where the patient received care. The goal is to improve the speed, quality, safety, and cost of patient care.

An organization that under HIPAA provides both covered and noncovered functions.

Actions and interventions designed to prevent disease, promote health, and prolong life within the population as a whole, encompassing strategies from individual-level care to broader community and societal changes. These measures aim to either stop diseases from occurring, detect them early for prompt intervention, or manage their consequences to minimize harm and improve well-being.

Government entities and agencies at various levels (federal, state, local, and Ttribal) legally empowered to protect and promote the health of the population within a specific jurisdiction.

Cohesive set of procedures designed to ensure that anyone with access to identifiable public health data:

• Is the person he or she claims to be (authentication)?

• Has a verified public health need to have access to the data in question?

• Has been authorized to access the data and is doing so from an authorized place using an authorized process?

Granting certain individuals or organizations access to data that contain personally identifiable information with the understanding that personally identifiable or potentially identifiable data cannot be re-released further unless a special data-sharing agreement governs the use and rerelease of the data and is agreed upon by the receiving program and the data provider(s).

The automated process of exchanging case report information for reportable conditions between healthcare facilities and public health authorities. Reportable conditions are diseases or other conditions that healthcare providers, laboratories, or other entities are legally required to report to public health authorities.

Transmission of digital laboratory reports via a standards-based message format from laboratories to healthcare and public health partners. EL automates the reporting process by translating information into an electronic message that can be automatically sent and processed. ELR is important because it provides an essential tool in response to outbreaks.

A federal law (1996) that sets national standards for protecting sensitive patient health information. HIPAA applies to health care providers, health plans, and health care clearinghouses — known collectively as covered entities — and, in certain cases, to their business associates.

A non-binding agreement between two or more parties that outlines their intentions and goals for a potential future agreement or collaboration.

The state of being undisturbed or free from public attention. The rules, regulations, and laws governing privacy and access to health-related information vary and change frequently.

Under HIPAA (45 CFR §164.512(b)) public health authorities are explicitly recognized as needing access to PHI to protect the health of communities.