The Personal Health Information Protection Act, 2004 (PHIPA) establishes a legal privacy framework for protecting personal health information (PHI). The Act provides definitions for terms like “agent” and “health information custodian,” these can be referenced in the Act. The Regulation made under PHIPA also specifies requirements for providers to custodians (referred to as a “service provider”) that enable health information custodians (HICs) to use electronic means to collect, use, modify, disclose, retain or dispose of PHI. The Regulation further specifies requirements for health information network providers (also referred to as “HINPs”) that enable two or more HICs to use electronic means to share PHI.
The South East Local Health Integration Network (SELHIN) is making a computer information portal called the South East Health Integration Information Portal (SHIIP) available, through Kingston Health Sciences Centre (KHSC), to health care providers, groups or agencies (participants) that are health information custodians in the geographic area managed by SELHIN Health Links. SHIIP is a secure web-based portal which enables health care providers to share patient data in real-time, or near real-time, including hospital emergency room and acute care visits. The portal incorporates and connects information from existing technology assets, facilitating in the identification of complex/high-needs patients, helping to inform clinical decision and care planning to enhance patients' experiences. KHSC has entered into a contract with the Kingston, Frontenac, Lennox & Addington Health Unit (KFLA) to provide certain information technology and related services required for the provision of SHIIP. KHSC provides electronic services to HICs for the purposes of providing to, or receiving information from the SHIIP.
KHSC functions in different roles as defined in PHIPA and its Regulation when providing SHIIP to participants. To the extent that SHIIP is used to permit two or more participants to disclose PHI to one another related to the coordinated care plan (CCP), KHSC is a HINP to those participants. To the extent that SHIIP is used to permit a participant to use electronic means to disclose or collect PHI, KHSC is a service provider to those participants. Lastly, to the extent that SHIIP is used to generate HARP/LACE scores, KHSC is an agent of the participant that contributed the data used to produce the scores and on whose behalf KHSC is acting in producing the scores.
As a HINP, Kingston Health Sciences Centre is subject to the requirements under subsection 6(3) of the Regulation of PHIPA. Below are policies that describe the standards employed by KHSC to protect the PHI managed in SHIIP. If you have questions about KHSC’s role as a HINP, or if you require further documents regarding our privacy practices, please make contact with KHSC Privacy Office.
To see a list of partner organizations who have signed onto this agreement, click here.
Kingston Health Sciences Centre
76 Stuart Street,
Kingston, ON K7L 2V7
Tel: 613-549-6666 Ext. 2567