No, that is a common misconception. HIPAA only applies to heathcare providers on what info that they can disseminate. Much like a doctors note, vaccine proof requirements are coming out.
ready2brd wrote:
“No, that is a common misconception. HIPAA only applies to heathcare providers on what info that they can disseminate. Much like a doctors note, vaccine proof requirements are coming out.”
So it’s ok for someone to give their own medical records (and the “vaccine” cards are medical records) out to anyone who asks for it?
I work for a state agency that oversees our insurance plan. HIPAA applies to me as much as it applies to a healthcare provider. HIPAA also applies to the insurance company.
I don’t know all the ins and outs of HIPAA with the current public health issue; I just know it’s different when it involves public health issues. Here’s an example of how PHI can be released without your consent:
Patient Y went to the Emergency Department at Local Hospital due to a severe laceration to the leg. While in the waiting area, Patient Y sits next to Patient Z. It is later confirmed that Patient Z has an airborne, communicable virus. Patient Y and other patients in the waiting area were potentially exposed.
Local law permits providers to notify individuals that may have been exposed to a communicable disease. Local Hospital may use PHI and certified health IT to identify patients who were in the waiting area and potentially exposed to the virus. Local Hospital may send notices to the exposed patients about their exposure based on 45 CFR 164.512(b)(1)(iv). Local Hospital must only use and disclose the minimum necessary PHI for the purpose of the notification of exposure to the communicable disease.
https://www.healthit.gov/sites/default/files/12072016_hipaa_and_public_health_fact_sheet.pdf