Firm believer that HIPAA is protecting us in to important ways.
1. Our medical information cannot be shared or sold like it was in the past between unrealted busineess, pharmacies and drug companies etc without our notification.
2. Push to electronically communicate makes it easier to do conduct healthcare business.
a.Since charts are electronic, I can look up meds patient is taking currently or 3 months ago for physician covering for PCP on wekeneds/evenings instead of having to pull paper chart from medical ecords.
b. Electronic connections between inurance companies and healthcare providers allow instant verification of eligibility and online authoriztions--saving great deal of time hanging on phone
3. Electonic access protected: those without approved authorizations from security officer, can't get into system. Automatic password changes q 2-3 months helps minimize prior employees from getting access to info after leaving. Time out limits on computer screens limits prying eyes too.
See these pre HIPAA stories:
Examples of recent privacy breaches include:
• A Michigan-based health system accidentally posted the medical records of thousands of patients on the Internet (The Ann Arbor News, February 10, 1999).
• A Utah-based pharmaceutical benefits management firm used patient data to solicit business for its owner, a drug store (Kiplingers, February 2000).
• An employee of the Tampa, Florida, health department took a computer disk containing the names of 4,000 people who had tested positive for HIV, the virus that causes AIDS (USA Today, October 10, 1996).
• The health insurance claims forms of thousands of patients blew out of a truck on its way to a recycling center in East Hartford, Connecticut (The Hartford Courant, May 14, 1999).
• A patient in a Boston-area hospital discovered that her medical record had been read by more than 200 of the hospital's employees (The Boston Globe, August 1, 2000).
• A Nevada woman who purchased a used computer discovered that the computer still contained the prescription records of the customers of the pharmacy that had previously owned the computer. The pharmacy data base included names, addresses, social security numbers, and a list of all the medicines the customers had purchased. (The New York Times, April 4, 1997 and April 12, 1997).
• A speculator bid $4000 for the patient records of a family practice in South Carolina. Among the businessman's uses of the purchased records was selling them back to the former patients. (New York Times, August 14, 1991).
• In 1993, the Boston Globe reported that Johnson and Johnson marketed a list of 5 million names and addresses of elderly incontinent women. (ACLU Legislative Update, April 1998).
• A few weeks after an Orlando woman had her doctor perform some routine tests, she received a letter from a drug company promoting a treatment for her high cholesterol. (Orlando Sentinel, November 30, 1997).
No matter how or why a disclosure of personal information is made, the harm to the individual is the same. In the face of industry evolution, the potential benefits of our changing health care system, and the real risks and occurrences of harm, protection of privacy must be built into the routine operations of our health care system.
Privacy breaches info from Part 1 of law:
http://www.hhs.gov/ocr/part1.html
Would you like to comment?
