Incident Report De-Identification with anonym.plus

Healthcare Solution · Hospital Administration · HIPAA Privacy Rule (45 CFR Part 164)

Incident-report de-identification is the removal of personal data from a safety write-up. It meets the HIPAA Privacy Rule (45 CFR Part 164) before reuse. anonym.plus does this on your own device, so the lesson stays while the names go.

When this applies

A fall or med error gets logged with the patient, the nurse, and the room. To pool such events for safety work, you must clear those details first.

How anonym.plus handles it

1. Open the write-up in anonym.plus on your workstation.
2. Local OCR reads scanned or printed pages, so nothing slips by.
3. It flags patient names, staff names, dates, and the room.
4. Check each flag and keep any non-ID safety code you need.
5. Swap each detail for a clear label, or black it out.
6. Save the cleaned file. The original never leaves your machine.

What you need to provide

• The write-up (PDF, DOCX, TXT, or image scan).
• An operator: Replace (swap), Redact (remove), or Mask (partial).
• Optional allow-list to keep your own event codes.

PHI entity types detected

Compliance achieved

• Meets the HIPAA Privacy Rule (45 CFR Part 164) for reuse.
• Clears patient PHI and the staff personal data in one pass.
• Runs offline, so working files are guarded by AES-256-GCM.

Limitations & cautions

A safety write-up names both a patient and a worker. Both kinds of data must go. Free-text lines can also hold a unique detail, like a rare event on a quiet ward, so give those a careful read before you export.