HIPAA:  Designated Record Set

HIPAA allows patients to request access to (and if they’d like, to obtain a copy of) what is called the Designated Record Set (DRS). This is all of the information held by OHSU that we use to make decisions about patients. The lists below are posted to help people understand what is included in the DRS.

Designated Record Set

A patient's Health Record, which includes;

List of Exclusions

HIPAA Outside Resources

Phoenix Health Systems
Includes an overview of HIPAA regulations, FAQ's, list-servs, deadlines for compliance.

U.S. Department of Health and Human Services
Full text of the HIPAA regulations, as well as the Final Rules.

Office for Civil Rights
HIPAA page of the Office for Civil Rights, a division within the Department of Health and Human Services. OCR will ultimately be responsible for enforcing HIPAA regulations. This page contains the full text of the July 6, 2001 Guidance published by OCR, which clarifies specific implications of HIPAA.

Beacon Partners, Inc.
HIPAA news and information, legislative developments, HIPAA-related events, legal perspectives on HIPAA.

Workgroup for Electronic Data Interchange (WEDI)
Information about electronic information standards, HIPAA glossary.

American Hospital Association
Legislative developments, HIPAA education resources.

Oregon Association of Hospitals and Health Systems
An outstanding site which includes specific information on steps to compliance, privacy and consent requirements, HIPAA on parents and minors, and sample forms. An especially good resource for HIPAA's implications in light of existing Oregon state laws.

National Committee on Vital and Health Statistics (NCVHS)
Public advisory body to the Secretary of Health and Human Services in the area of health and data statistics. Transcripts of all hearings and some written testimony.