A Health IT Policy Committee work group is proposing to require providers to encrypt patient data, even in a direct health information exchange. Strong security policies, such as encryption requirements, would eliminate the need for "any additional individual consent beyond what is already required by current law," a panel co-chairman said.

Related Summaries