1
2
3
4
5
6
7
8
1
Patients give permission for the use of their Unique Patient Identifier (UPI) and agree to submit the information needed to obtain a UPI.
2
The information needed to create the UPI is collected directly from the patient with their consent. Patients may request to correct any inaccuracies
3
The information submitted is used to create a UPI for patient identification, record matching and health information exchange, and to protect patient identity and privacy.
4
Only the information necessary to uniquely identify a patient is collected. No additional personal information is collected, purchased or extracted from public or private sources.
5
The information gathered is used solely for the purpose of issuing a UPI and enabling the accurate, secure and confidential confirmation of the patient’s identity.
6
The highest levels of security as established by standards, federal law and industry best practices are applied for authentication, encryption, accountability, access, etc.
7
Data of insufficient quality is not accepted during the UPI creation process and information is continuously updated to maintain the highest level of integrity.
8
Accountability is ensured through training, regularly-conducted audits of UPI processes and reviews of compliance with privacy protection requirements.