- (1) Individual patient information submitted to ADPH shall not be public records and shall not be subject to discovery.
- (2) ADPH shall not release the HAI data or any information obtained from the data in a form which could be used to identify a patient.
- (3) ADPH shall develop policies and procedures, approved by the Advisory Council, addressing the release of HAI data to legitimate research organizations so that patient confidentiality and privilege protections are maintained.
- (4) Individual patient data submitted to ADPH by healthcare facilities shall at all times remain confidential and privileged from discovery.
- (5) All information and records acquired or developed shall be secured, have restricted access, and shall be maintained based on the policies established by the Advisory Council and ADPH.
Author: Kelly M. Stevens, M.S.
Statutory Authority: Code of Ala. 1975, §22-11A-113; 22-11A-119; 22-2-2(6).
History: New Rule: Filed June 23, 2010; effective July 28, 2010.