Guides and Guidelines
HIA Implementation Guide (April 2026)
This Implementation Guide supports healthcare providers in preparing for the Health Information Act (HIA) requirements.
-
Current Release: Click here
-
Upcoming Release: Chapters 3B will include practical implementation guidance, corporate policy templates and sample clauses to support CS/DS implementation (Coming soon in May 2026)
Cybersecurity and Data Security Essentials for Healthcare Providers
The Cybersecurity and Data Security (CS/DS) Essentials set out cyber and data security requirements for healthcare providers managing and processing health information pursuant to the Health Information Act (HIA).
MOH will also be issuing further guidance and resources (such as self-help guide, infographics, checklists) to help healthcare providers in understanding these cyber and data security requirements.
Note: The CS/DS Essentials replace the Cyber and Data Security Guidelines for Healthcare Providers (issued in December 2023) and the Healthcare Cybersecurity Essentials (HCSE) (issued in August 2021)
Guidelines on Appropriate Contribution, Use and Access to NEHR
The Health Information Act regulates the access and collection of health information from the National Electronic Health Record (NEHR). The "Guidelines on Appropriate Contribution, Use and Access to National Electronic Health Record (NEHR)" provide healthcare professionals and other authorised users with guidance on using NEHR to support healthcare service delivery.