There is a growing belief in American society concerning the right of the individual to privacy. There are also increasing doubts about how the government might use information that it collects about individuals.
Every organization should have an official policy governing such searches, publicized so that employees know that searches can occur and the basis for the searches, specifically whether they can to occur at random or for reasonable cause or both.
Patient records should always be held in the strictest confidence. It is a violation of ethical principles to reveal patient information to anyone outside of the organization without proper authorization.
No information about a patient’s condition—not even acknowledgment that the individual is a patient—should be given out without the express permission of the patient (or individual empowered to act for the patient).
The law was intended to strike a balance between ensuring that personal health information is accessible only to those who truly need it and permitting the health care industry to pursue medical research and improve the overall quality of care.
The applicable portions of Title II created much work and expense for health care providers and organizations that do business with them, plus creating inconvenience and often frustration for patients and their families.
There are a number of instances in which personal medical information can be used without patient consent. These are related mostly to research and public health uses, and patient identification is removed.
All health care plans and providers and all other organizations that serve the direct providers of health care, such as billing services and medical equipment dealers. All affected entities must: (next)
Depending on the kind of activity you supervise, the requirements of HIPAA can significantly affect your role. In some departments you may never have to concern yourself with HIPAA; in others HIPAA will be with you daily.