MyHealth’s Board of Directors has authorized the following amendments to MyHealth’s Network Policies:
- Policy 1: Network Policies, Compliance, Responsibilities and Updates. Added policy language to clarify that if MyHealth collects any data directly from Individuals, that data is classified as PHI, subject to all the same protections and terms as any other PHI. Such PHI is thereafter controlled by 1) the Data Supplier, if MyHealth collected the data on behalf of a Data Supplier; or 2) the Board of Directors for MyHealth, if MyHealth collected the data independent of a relationship with a Data Supplier.
- Policy 18: Organization Vision and Governance. This is a non-material change, simply updated the terms used to describe committees, and their roles, consistent with current practice and the current version of the Terms and Conditions.
- Glossary: This is a non-material change. Fixed error to correct the definition of Data Supplier.
The change is scheduled to take effect on September 1, 2025. The redlined version of the entire policy document may be viewed using this link (here is the full address if you wish to copy and paste into your browser address bar): https://myhealthaccess.sharefile.com/public/share/web-seb81a5cfc1c94f61800c4d0e10047088
If Participants have questions or objections, please communicate with your client services contact, or email privacy@myhealthaccess.net before the effective date.
The full version of the new policies (v3.41) as well as the current active policies (v3.40) are available at https://myhealthaccess.net/policies.
Joe Walker
MyHealth Privacy Officer