Confidentiality Measures

EHNAC often receives questions from candidates for accreditation about how EHNAC works to protect their confidential and proprietary information. EHNAC has a long-standing policy regarding application confidentiality, as outlined below.

  1. Each commissioner signs a confidentiality agreement with EHNAC intended to protect applicant information. EHNAC has never had a breach of confidentiality since our inception in 1995. As required by the confidentiality agreement, commissioners must destroy any materials in their possession after an accreditation is completed. EHNAC maintains in a secure manner a single copy of the documentation and report for its historical records.
  2. EHNAC has developed a Mutual Non-Disclosure Agreement (NDA) that we use with accreditation candidates when requested to insure appropriate protection of Protected Health Information (PHI). We take the issue of confidentiality, as well as PHI, very seriously.
  3. EHNAC recognizes that applicants often have special sensitivities to submitting certain types of information (e.g., details of disaster recovery plans). We have been quite flexible with applicants who choose to retain particular documentation for verification only during our site reviews. Concerned applicants should address their concerns to Debra Hopkinson, EHNAC’s director of operations, who will coordinate an appropriate response from EHNAC.

EHNAC also tries to be responsive to enterprises that do not want their site review conducted by a commissioner who is employed by a competitive electronic health network. Because only one of our four site reviewers is so employed, we have been able to accommodate requests for site reviews by someone who is not perceived as a competitor. Applicants with a realistic concern that a site reviewer may see information that is sensitive for competitive reasons should address their concerns to Debra Hopkinson, who will coordinate an appropriate response from EHNAC.