Skip to main content

Privacy & Confidentiality at DPH

Maintaining the privacy of the confidential data held at the Department of Public Health is critical to the fulfillment of our core public health responsibilities.

DPH is subject to the Fair Information Practices Act (FIPA), a state law enacted to ensure the privacy of all personal data held by state agencies. In addition, some of DPH's programs are required to comply with HIPAA (Health Insurance Portability and Accountability Act) and others are subject to different state or federal privacy laws.

DPH is a public health authority as well as a health oversight agency. Many federal and state laws and regulations affect DPH's relationship with the entities it regulates and oversees. Information is provided with respect to how DPH's status affects its ability to collect information from individuals and facilities as well as their ability or obligation to provide information to DPH.

The DPH Confidentiality Policy and Procedures, which may be found here, are a synthesis of the many applicable privacy and confidentiality provisions, and constitute the standards by which the DPH workforce must comply when collecting, using, or disclosing confidential data.

What would you like to do?

Top tasks

Public Health Confidentiality Policy and Procedures  Public Health Privacy Notices 

What you need to know

Public Health and Health Oversight  Public Health's Covered Entity Status under HIPAA  Frequently asked questions  Privacy and Data Compliance Resources  Inquiries related to HIPAA 

Contact Information

Address

Department of Public Health, Privacy & Data Compliance Office (PDCO)
250 Washington St., 2nd floor, Boston, MA 02108-4619
Directions 

Phone

(617) 624-5194

General inquiries relating to Privacy & Confidentiality at the Department of Public Health

Online

Privacy.DPH@state.ma.us
Image credits:  Shutterstock
Feedback