Section 410IAC21-1-5. Security and confidentiality of data  

   (a) The state board shall assure confidentiality of patient record data when entering, retrieving, reviewing and utilizing such data.

  (b) The state board shall take all precautions and security measures necessary in order to protect the cancer registry data from intrusion or misuse by unauthorized individuals, and to preserve the right to privacy of individual patients maintained on the registry.

  (c) Pursuant to IC 5-14-3-10, any public employee or official, or any employee or officer of a contractor or subcontractor of a public agency who knowingly or intentionally discloses the identity of a patient maintained on the state cancer registry system to a person not authorized to receive such information, commits a Class A misdemeanor. Any public employee shall be disciplined in accordance with the personnel policies of the agency by which he is employed if he intentionally, knowingly, or recklessly discloses or fails to protect the identity of patients maintained on the state cancer registry system.

  (d) A person who reports information to the cancer registry system in accordance with 410 IAC 21-1, is immune from any civil or criminal liability that might otherwise be imposed because of release of what is otherwise confidential information. (Indiana State Department of Health; 410 IAC 21-1-5; filed Nov 7, 1986, 3:30 pm: 10 IR 422; readopted filed Jul 11, 2001, 2:23 p.m.: 24 IR 4234; readopted filed May 22, 2007, 1:44 p.m.: 20070613-IR-410070141RFA; readopted filed Sep 11, 2013, 3:19 p.m.: 20131009-IR-410130346RFA)