Privacy & Confidentiality at DPH

Maintaining the privacy of the confidential data held at the Department of Public Health is critical to the fulfillment of our core public health responsibilities.

DPH is subject to the Fair Information Practices Act (FIPA), a state law enacted to ensure the privacy of all personal data held by state agencies. In addition, some of DPH's programs are required to comply with HIPAA (Health Insurance Portability and Accountability Act) and others are subject to different state or federal privacy laws.

DPH is a public health authority as well as a health oversight agency. Many federal and state laws and regulations affect DPH's relationship with the entities it regulates and oversees. Information is provided with respect to how DPH's status affects its ability to collect information from individuals and facilities as well as their ability or obligation to provide information to DPH.

The DPH Confidentiality Policy and Procedures, which may be found here, are a synthesis of the many applicable privacy and confidentiality provisions, and constitute the standards by which the DPH workforce must comply when collecting, using, or disclosing confidential data.

Contact Information


Department of Public Health, Privacy & Data Compliance Office (PDCO)
250 Washington St., 2nd floor, Boston, MA 02108-4619


General inquiries relating to Privacy & Confidentiality at the Department of Public Health

Image credits:  Shutterstock

Help Us Improve  with your feedback

Please do not include personal or contact information.