Skip to Content

Myth Buster: All patient-generated health data has the same privacy and security protections

MYTH: All patient-generated health data has the same privacy and security protections.

FACT: The privacy and security of patient-generated health data varies depending on the type of entity collecting or storing the information.

Patient-generated health data (PGHD) has many benefits; however, not all PGHD is protected in the same way, and patients should be aware of the ways in PGHD can be used depending on where and how it is shared. While federal laws and regulations govern the use and disclosure of personal health information held by “covered entities” (i.e., physicians, hospitals, and health plans), PGHD that is created and/or shared on patient-powered research networks (e.g., PatientsLikeMe and 23andMe) and registries (e.g., BioBank) may not be protected in the same way. Learn more about the privacy and security of PGHD in our Myth Buster below. 



Current View