CDPHP: Masks PHI Using De‑Identification Throughout the Software Development Lifecycle

Summary:

Dan Kinser, VP of Core Systems at Capital District Physicians’ Health Plan (CDPHP) joined SourcEdge to emphasize the importance of protecting Protected Health Information (PHI) throughout the Software Development Lifecycle (SDLC) in a presentation at the 2023 Cognizant Health Sciences Conference. The focus was on implementing de-identification techniques to ensure patient privacy and maintain regulatory compliance during the development, testing, and deployment phases of healthcare applications.

Results:

  • Developed and shared best practices for masking PHI, leveraging de-identification methodologies throughout the SDLC, from initial development stages to deployment.
  • Discussed the intricate relationship between encryption techniques within healthcare platforms like Facets and broader data de-identification strategies, highlighting the complexities and solutions.
  • Introduced tools and techniques for effectively safeguarding PHI across various ecosystems supporting healthcare software development, ensuring end-to-end data protection.
  • Presented case studies illustrating the critical need for stringent PHI protection measures and the potential risks of inadequate data security practices.