On November 6, 2025, the Citizens’ Council for Health Freedom (CCHF) announced a coalition effort against the federal REAL ID Act of 2005.
A group of 34 organizations and 41 state legislators sent a letter to Senator Rand Paul (R-KY), urging him to hold a Senate hearing on his repeal bill, the Safeguarding Personal Information Act (S. 2769). Senator Paul introduced the bill on September 11, 2025. It aims to dismantle what critics call a nationalized digital ID system that could track citizens and restrict access to services like banking, travel, and healthcare.
Twila Brase, RN, PHN, co-founder and president of CCHF, said, “REAL ID is a Federal ID masquerading as a state driver’s license.” She warned that state DMVs have been “hijacked” and plan to digitize every ID. Catherine Austin Fitts, president of Solari Inc. and a former HUD Assistant Secretary, said digital IDs could “control financial transactions and limit our freedom of speech and travel.” Stephanie Weidle, Executive Director of Feds For Freedom, called the REAL ID Act “a gateway to a digital identification system and social credit framework.” She said Congress must hold hearings to protect constitutional rights.
The Safeguarding Personal Information Act (S. 2769) is a federal bill designed to repeal the REAL ID Act of 2005. The legislation would end the national standards for driver’s licenses and identification cards established under the Department of Homeland Security (DHS).
Supporters of the bill argue that repealing REAL ID would protect individual privacy and return authority to the states to manage their own identification systems without federal oversight. They also express concern that the current REAL ID framework could lead to increased data collection and digital surveillance. Opponents, however, view REAL ID as a tool for verifying identity, improving national security, and preventing fraud.
The Act could change the identity verification infrastructure healthcare organizations rely on. Healthcare providers rely heavily on accurate patient identification and linkage of health records. Organizations must identify, track, manage, and link individual patients and their digitized healthcare information to deliver safe, effective care.
If a federal ID system (like one implied by the REAL ID Act) changes or constrains how IDs are issued or used, it could disrupt how hospitals and clinics verify identity, link records across systems, and maintain continuity of care.
Restrictive identification policies can affect patient access to health-care services and thus impact equity. One letter indexed in the Journal of Immigrant and Minority Health found that the REAL ID Act’s requirement of proof of authorised presence for state IDs, combined with other ID barriers, can deter marginalised populations from accessing health‐related resources. The Safeguarding Personal Information Act would roll back or change the federal ID regime, which means healthcare organizations must anticipate potential shifts in who presents which ID, how they verify it, and how that could affect underserved communities.
See also: HIPAA Compliant Email: The Definitive Guide (2025 Update)
PHI includes any data that can identify a patient and relates to their health status, medical history, or payment for healthcare services.
HIPAA allows the sharing of PHI for treatment, payment, and healthcare operations without patient authorization. Any other disclosure, such as for marketing or research, requires explicit patient consent.
HIPAA requires records to be kept for six years, though states may have longer requirements.