PHI includes but is not limited to the following:
- A patient’s name, address, birth date, Social Security number, biometric identifiers or other personally identifiable information (PII);
- An individual’s past, present or future physical or mental health condition; – any care provided to an individual; and
- Information concerning the past, present or future payment for the care provided to the individual that identifies the patient or information for which there is a reasonable basis to believe could be used to identify the patient.