SECURETexas Certification

"SECURETexas: Health Information Privacy and Security Certification" will improve the protection of health information for all Texans.

House Bill 300 (82nd Texas Legislature, 2011) directed the THSA to develop and submit privacy and security standards for the electronic sharing of protected health information to the Texas Health and Human Services Commission. Those standards are designed to comply with HIPAA, the Texas Medical Records Privacy Act, and any other state and federal law relating to the security and confidentiality of information electronically maintained or disclosed by a covered entity. The standards further ensure the secure maintenance and disclosure of personally identifiable health information, include strategies and procedures for disclosing personally identifiable health information, and support a level of system interoperability with existing health record databases in Texas that is consistent with emerging standards.

HB 300 further directed that once these standards have been ratified through the rule-making process, the THSA must publish the standards on its website. The final publication of those standards, which have been re-posted on this website with the permission of the Director of the Texas Register, can be found HERE. A link to where those standards have been adopted as part of the Texas Administrative Code can be found HERE.

The THSA has now partnered with the Health Information Trust Alliance (HITRUST) to implement "SECURETexas," a certification program wherein a Texas covered entity may apply for certification of its past compliance with these standards.