etHIN complies with all state and federal privacy, security, and confidentiality laws, including HIPAA (Health Insurance Portability and Accountability Act of 1996). It is important for you to know that authorized healthcare providers may only access patient information for patients with whom they have a relationship to support treatment, payment, or operational activities.
etHIN and healthcare providers are subject to strict policies and procedures to protect patient information. All clinicians must complete a stringent onboarding process in order to become etHIN authorized users. All user activity within the Health Information Exchange (HIE) is audited and monitored to enforce compliance with those policies. You may request an audit of your records at any time by contacting a healthcare provider who participates with etHIN. The audit report will allow you to see when and by whom your medical records have been accessed.