CDC Disease Surveillance Systems and Data Networks
The Centers for Disease Control and Prevention operates one of the most extensive disease surveillance infrastructures in the world, integrating data from clinical laboratories, hospitals, state and local health departments, and international partners into a coordinated network of systems. This page covers the architecture, operational mechanics, data flows, classification structures, and known tensions within CDC's surveillance apparatus. Understanding how these systems function is essential for public health professionals, policy analysts, and researchers who rely on CDC data to track disease burden, detect outbreaks, and inform intervention strategies.
- Definition and scope
- Core mechanics or structure
- Causal relationships or drivers
- Classification boundaries
- Tradeoffs and tensions
- Common misconceptions
- Checklist or steps (non-advisory)
- Reference table or matrix
Definition and scope
CDC disease surveillance encompasses the ongoing, systematic collection, analysis, interpretation, and dissemination of health-related data for use in planning, implementing, and evaluating public health action. The statutory authority grounding this function derives from 42 U.S.C. § 247d and related provisions of the Public Health Service Act, which authorize the Secretary of Health and Human Services — and by delegation, the CDC — to conduct investigations and compile information on disease.
The scope of CDC surveillance spans four primary categories: communicable disease surveillance (including vector-borne, sexually transmitted, vaccine-preventable, and foodborne pathogens); chronic disease surveillance (cardiovascular disease, cancer, diabetes); injury and violence surveillance; and environmental health monitoring. The National Notifiable Diseases Surveillance System (NNDSS) alone tracked more than 120 designated nationally notifiable conditions as of its most recent reporting cycle.
Surveillance data flow through multiple tiers: individual clinicians and laboratories report to state or local health departments, which then report to CDC through standardized electronic messaging protocols. The resulting datasets inform the CDC's data and statistics resources published for research and policy use.
Core mechanics or structure
CDC surveillance architecture is not a single unified database but a federated collection of purpose-built systems, each designed around a specific disease category, data source, or reporting mechanism.
National Notifiable Diseases Surveillance System (NNDSS): The backbone of communicable disease surveillance in the United States. State and territorial health departments submit case reports electronically through the National Electronic Disease Surveillance System (NEDSS) infrastructure. The NNDSS operates under a cooperative agreement model with all 50 states, the District of Columbia, and 5 U.S. territories.
BioSense Platform: Part of the National Syndromic Surveillance Program (NSSP), BioSense ingests emergency department visit data from participating facilities in near real-time — covering approximately 71% of U.S. emergency department visits according to the CDC's NSSP overview. Syndromic data capture chief complaints and discharge diagnoses before laboratory confirmation, enabling earlier anomaly detection.
FluView and the U.S. Influenza Surveillance System: A multi-component system drawing from 5 distinct data sources: outpatient illness surveillance (ILINet, with approximately 3,500 sentinel providers), laboratory surveillance, hospitalization data via the Influenza Hospitalization Surveillance Network (FluSurv-NET), mortality surveillance, and pediatric death reports. Detailed architecture is published at CDC FluView.
National Healthcare Safety Network (NHSN): Operated through the Division of Healthcare Quality Promotion, NHSN collects healthcare-associated infection (HAI) data from over 38,000 healthcare facilities (CDC NHSN). Participation is required under the Centers for Medicare & Medicaid Services Conditions of Participation for many facility types.
Behavioral Risk Factor Surveillance System (BRFSS): The largest continuously conducted telephone health survey in the world, with more than 400,000 adult interviews completed annually across all states and territories (CDC BRFSS).
MMWR: The Morbidity and Mortality Weekly Report serves as the primary publication vehicle through which surveillance findings are disseminated to the public health community and the scientific literature.
Causal relationships or drivers
The scale and configuration of CDC surveillance systems are shaped by four distinct drivers.
Legislative and regulatory mandates: The Public Health Service Act and individual disease-specific statutes (e.g., the Ryan White HIV/AIDS Program legislation under 42 U.S.C. § 300ff) create reporting obligations that cascade from federal requirements down through state enabling statutes. States maintain independent legal authority over notifiable disease reporting; the CDC's role at the collection stage is coordinative rather than directly coercive, operating through cooperative agreements.
Outbreak detection requirements: Failures in early outbreak detection — most prominently analyzed in after-action reports following the 2001 anthrax events — drove federal investment in syndromic surveillance infrastructure. The CDC's outbreak investigation process depends heavily on surveillance signal quality.
Technological infrastructure evolution: The transition from paper-based reporting to Health Level 7 (HL7) electronic laboratory reporting (ELR) and electronic case reporting (eCR) through the AIMS Platform reduced average reporting lag for notifiable conditions from weeks to days in participating jurisdictions. The CDC's public health informatics program coordinates these standards nationally.
Funding allocation: Surveillance infrastructure depends substantially on funding streams that include the Public Health Emergency Preparedness (PHEP) cooperative agreements, CDC grants to state epidemiology programs, and targeted program funds. The CDC's budget and funding structure directly determines which surveillance networks receive expansion resources in any given fiscal year.
Classification boundaries
Not all health data collection that CDC conducts constitutes "surveillance" in the formal operational sense. The boundaries matter for legal compliance, data use agreements, and IRB requirements.
Surveillance vs. research: The CDC defines surveillance as the ongoing collection of data for public health action, distinct from research subject to Common Rule protections under 45 CFR Part 46. The CDC's guidelines distinguishing surveillance from research clarify that routinely collected disease registry data does not typically require individual informed consent.
Passive vs. active surveillance: Passive surveillance relies on spontaneous reporting by providers and laboratories; active surveillance involves CDC or state staff directly soliciting case reports from healthcare providers. Active surveillance — as used in FluSurv-NET and the Emerging Infections Program (EIP) network — generates higher sensitivity but at substantially greater operational cost.
Case-based vs. aggregate reporting: NNDSS collects individual-level case data with demographic variables. Some systems, including certain BRFSS modules, produce only aggregate population estimates. The distinction affects what analytical operations downstream users can perform.
Notifiable vs. non-notifiable conditions: The Council of State and Territorial Epidemiologists (CSTE) formally recommends conditions for national notification status. CDC adopts these recommendations, but states retain authority to maintain their own notifiable disease lists, which may include conditions not on the national list.
Tradeoffs and tensions
Completeness vs. timeliness: Waiting for laboratory confirmation increases data accuracy but delays detection. Syndromic surveillance addresses this by trading diagnostic specificity for speed, producing more false-positive signals requiring adjudication.
Standardization vs. jurisdictional flexibility: Federal messaging standards (HL7 FHIR-based eCR, HL7 2.5.1 ELR) improve interoperability but impose implementation costs on state and local health information systems that vary widely in technical capacity. Jurisdictions with older legacy infrastructure face data quality gaps that are not uniformly distributed.
Privacy vs. granularity: Individual-level case data with geographic identifiers, age, race, and ethnicity enables detailed epidemiological analysis but creates re-identification risks. CDC applies cell suppression rules (typically suppressing cells with fewer than 5 cases) and restricts access to restricted-use datasets through the CDC Research Data Center.
Chronic underfunding of infrastructure: The Association of State and Territorial Health Officials (ASTHO) has documented persistent gaps in state epidemiology capacity. The CDC Foundation's workforce analyses have identified that state and local health departments face recurring shortfalls in trained epidemiologists, limiting the effectiveness of reporting networks regardless of federal system design.
Common misconceptions
Misconception: CDC directly collects all surveillance data from providers.
Correction: CDC does not have a direct legal reporting relationship with individual clinicians or hospitals in most circumstances. Providers report to state or local health departments, which report to CDC. The federal system is structurally dependent on 59 reporting jurisdictions (50 states, DC, 5 territories, and 3 cities with independent epidemiology programs).
Misconception: All notifiable disease reports are complete and near-real-time.
Correction: NNDSS data quality varies substantially by condition and jurisdiction. Conditions with mandatory laboratory reporting (e.g., HIV, tuberculosis) achieve higher completeness than those relying on clinical diagnosis alone. The CDC's own technical notes for NNDSS data acknowledge systematic underreporting for conditions without strong laboratory linkage.
Misconception: BioSense/NSSP covers all U.S. emergency departments.
Correction: As noted above, NSSP coverage reaches approximately 71% of U.S. emergency department visits. Rural and critical-access hospitals are disproportionately underrepresented in the network.
Misconception: Surveillance data published by CDC reflects confirmed cases only.
Correction: Different systems apply different case definitions. NNDSS uses confirmed, probable, and suspected classifications, and published counts often include probable cases. The CSTE case definition documents specify which classification tiers are included for each condition.
Checklist or steps (non-advisory)
How a reportable disease case moves through the surveillance system:
- When case counts trigger predefined outbreak thresholds, data are routed to the CDC Epidemic Intelligence Service and relevant program divisions for further investigation.
- Published findings appear in the MMWR or as standalone data releases on the CDC data portal.
Reference table or matrix
| System | Primary Data Source | Reporting Lag | Coverage Scope | Case-Level Data |
|---|---|---|---|---|
| NNDSS | State/local health depts | Days to weeks | 120+ notifiable conditions nationally | Yes |
| BioSense/NSSP | Emergency departments | Near real-time (hours) | ~71% of U.S. ED visits | Partial (chief complaint + dx) |
| FluView (ILINet) | ~3,500 sentinel providers | Weekly | Outpatient influenza-like illness | Aggregate |
| FluSurv-NET | Participating hospital networks | Weekly | 13 Emerging Infections Program sites | Yes |
| NHSN | 38,000+ healthcare facilities | Variable (facility-reported) | HAIs, antimicrobial use, LTCF data | Yes |
| BRFSS | Telephone interviews | Annual | 400,000+ adults, all U.S. states/territories | Yes |
| WONDER | Multiple CDC surveillance databases | Varies by dataset | Broad (mortality, environmental, infectious disease) | Restricted/aggregate |
The CDC's main resource hub at /index provides navigational access to the full portfolio of agency functions, of which disease surveillance represents the most data-intensive operational component.