Protected Health Information (PHI)

What is protected health information (PHI)?

PHI stands for protected health information. The HIPAA Privacy Rule provides federal protections for personal health information held by covered entities and gives patients various rights concerning that information.

PHI and electronically protected health information (ePHI) mean any identifiable data about the patient, including:

  • Name
  • Address
  • Date of birth
  • Social security number
  • Device identifiers
  • Email addresses
  • Biometrics
  • Lab or imaging results
  • Medical history
  • Payment information

PHI is a subset of personally identifiable information (PII) that refers explicitly to information processed by HIPAA-covered entities. When health information is combined with a personal identifier, the data becomes PHI.

The requirements for processing PHI help protect patient privacy and allow making care coordination easier. The HIPAA Privacy Rule ensures that PHI is shared and used only with patient permission or for care coordination between covered entities. Identifiable health information is not considered PHI unless that organization is a HIPAA-covered entity.

Learn more about HIPAA-compliant analytics and marketing:


  • 25 years of digital analytics with Brian Clifton: The real challenge for the future is to make sense of data

    Organizations are becoming more and more aware of data-driven strategies, so understanding the complexities surrounding data quality, privacy, and technological advancements becomes crucial for their future success. They also need to rely on new tools, often supported by AI, to adapt to changes in the digital analytics field. Dive into the fourth and final episode…

    Read more

  • Is Google Analytics HIPAA-compliant?

    Disclaimer: This blog post is not legal advice. Piwik PRO provides privacy-friendly analytics software, but does not provide legal consultancy. If you’d like to make sure you’re in compliance with HIPAA guidelines, we encourage you to consult an attorney. SUMMARY Healthcare organizations use analytics platforms to collect and analyze data about their patients. The data…

    Read more