Comment by nradov

2 days ago

HHS publishes clear guidelines for de-identifying healthcare data (PHI). Once it has been properly de-identified (anonymized) it is no longer subject to any special controls. I am aware that some researchers have claimed that it could be theoretically possible to re-identify certain records but so far no one has been able to do so in practice so concerns seem to be overblown.

https://www.hhs.gov/hipaa/for-professionals/special-topics/d...

As for Medicare, only a very limited set of data is publicly available. Larger sets are available to certain contractors and researchers but the access agreements prohibit sale to third parties. So you must have misinterpreted the content or source of the data you saw.

https://www.cms.gov/data-research/cms-data/types-data-files

2 comments

nradov

zkmon 2 days ago

https://ghdx.healthdata.org/record/united-states-marketscan-...

It shows some medicare data as owned by a private company.

nradov 2 days ago

That doesn't look like Medicare data. It comes from Medicare Supplement health plans offered by commercial payers (not a government program).