What Is PHI (Protected Health Information)?
Simply put, protected health information (PHI) is any health data related to past, present, or future physical or mental health. This information can be linked to an individual and is collected about the provision of healthcare.
However, if anyone steals this information, thieves can sell and use it to commit fraud. Thieves often use it for access to medical care in the victim’s name, and it can go undetected for months or even years.
Types of PHI
Protected health information and the requirements for its protection are described in the Health Insurance Portability and Accountability Act (HIPAA). Furthermore, HIPAA provides 18 identifiers for what kinds of information they treat as PHI:
| PHI Identifier | Description |
| Personal Identifiers | Names Dates Social Security Numbers |
| Contact Information | Phone Numbers Fax Numbers Email Addresses |
| Location & Online Identifiers | Geographic Identifiers Web URLs Internet Protocol (IP) Address Numbers |
| Medical & Health-Related Identifiers | Medical Record Numbers Health Plan Beneficiary Numbers |
| Financial & Account Identifiers | Account Numbers Certificate/License Numbers |
| Device & Asset Identifiers | Vehicle Identifiers and Serial Numbers (including license plates) Device Identifiers and Serial Numbers |
| Biometric & Visual Identifiers | Biometric Identifiers (e.g., fingerprint, retinal scan) Full Face Photos and Comparable Images |
| Other Unique Identifiers | Unique Identifying Numbers, Characteristics, or Codes |
Why Secure PHI Disposal Is Essential
For companies or medical facilities that collect PHI, secure disposal of any outdated or unnecessary health information is crucial for maintaining HIPAA compliance.
- Medical Waste PHI—These items include syringes and other sharps, pill bottles, or IV bags that may have a patient’s information on them. There are specific containers to collect waste that are color-coded to ensure it’s transported and destroyed safely.
- Paper Documents with PHI—Secure shredding is the only way to make sure they are inaccessible once you dispose of them. Before shredding, you must store any old paper medical records in locking bins for maximum security.
- Electronic PHI—Shredding your electronic devices is the only way to make sure the drive is completely unusable because some software can recover files after you delete them. Luckily, many shredding services can also handle the complete destruction of hard drives as well as paper.
Need Help Finding Medical Waste Disposal Providers?
Medical Waste Pros partners with professional medical waste disposal providers across the United States. Our agents can connect you with regulated, hazardous, and household medical waste professionals. To find the right service for you, fill out the form or just give us a call at 888-755-6370 for a free, no-obligation quote from providers in your area.
