Healthcare purchase data from a transaction upon a patient's account may be required to be transported and stored for safeguarding patient confidentiality if sufficient to identify the patient and the purchase. To avoid non-compliance, a transaction hander (TH) receives the data from a merchant's acquirer as encrypted by a key known to both the acquirer and TH. After decrypting the data with that key, the TH re-encrypts it with a key known only to the TH, and then stored. After receiving an issuer's request for the data, the TH decrypts the data using its own key, re-encrypts it using a key known only to the TH and the issuer, and then sends it to the issuer who will decrypt the data using that key. The unencrypted data may be used by the issuer to demonstrate the issuer's regulatory compliance to a governmental entity.