Nye Day / Monday, October 16, 2023 / Categories: Electronic Patient Engagement, Patient Portals, Health Information Exchange, Implementation of HIE, Privacy and Security, Privacy & Security Best Practices, HIPAA, Security Risk Analysis, Breach Mitigation & Response, HIT Events Information Blocking Rule Requirements for Part 2 Data in Patient Portals Considerations for Entities that Maintain Part 2-Protected Data CoE-PHI resource that describes the Information Blocking Rule and explains that it does not preempt stricter privacy laws and regulations such as 42 CFR Part 2. Key Points: Information blocking includes practices that would “interfere with, prevent, or materially discourage the access, exchange, or use of electronic health information.” Following a legal requirement to obtain patient consent for a disclosure meets the “privacy exception” in the Information Blocking Rule and is not considered information blocking. If a portal cannot segment Part 2-protected records or prevent a patient’s proxy from unconsented access to such records, the healthcare provider should not share Part 2-protected records on the portal. Print 1190 Tags: HIPAApatient portalinformation blockingpatient datapatient privacy Resource Links View Article HereInformation Blocking Rule Requirements for Part 2 Data in Patient Portals Related Resources Health Center Resilience in the Face of Cyber Adversity Individuals’ Access and Use of Patient Portals and Smartphone Health Apps, 2022 Navigating Compliance Challenges with the Information Blocking Rule: A Collection of Case Studies Enabling Patient Access to Health Data for Actionable Results Health Center Guidelines for Implementing FHIR and the Information Blocking Rule