Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: ransomnote

Also from the article:

“But privacy experts said it appeared to be permissible under federal law. That law, the Health Insurance Portability and Accountability Act of 1996, generally allows hospitals to share data with business partners without telling patients, as long as the information is used ‘only to help the covered entity carry out its health care functions.’”

That’s the huge loophole in HIPAA and pretty much makes anything permissible as long as those functions can be demonstrated.


14 posted on 11/11/2019 1:20:56 PM PST by Retrofitted
[ Post Reply | Private Reply | To 11 | View Replies ]

To: Retrofitted

Still only true if personal identification information is removed.

We are allowed to get med device data from the hospitals by agreement to monitor and improve equipment, but it must have the personal information stripped and if it is not it must immediately be reported and deleted. Not sure the final end steps on the back end, but I think the patient ends up getting informed of the breach.


42 posted on 11/11/2019 3:19:22 PM PST by reed13k (For evil to triumph it is only necessary that good men do nothing)
[ Post Reply | Private Reply | To 14 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson