Another case note from the New Zealand Privacy Commissioner’s Office: A woman made a request to a health agency for the access logs of her records. She said she was worried about people looking at her file who shouldn’t be doing so (employee browsing). The agency released the access log to the woman with the…
Category: Healthcare
HHS Office for Civil Rights Issues Bulletin on Requirements under HIPAA for Online Tracking Technologies to Protect the Privacy and Security of Health Information
Today, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services issued a bulletin to highlight the obligations of Health Insurance Portability and Accountability Act of 1996 (HIPAA) on covered entities and business associates (“regulated entities”) under the HIPAA Privacy, Security, and Breach Notification Rules (“HIPAA Rules”) when using online…
HHS Proposes New Protections to Increase Care Coordination and Confidentiality for Patients With Substance Use Challenges
From HHS, yesterday: Today, the U.S. Health and Human Services Department, through the Office for Civil Rights (OCR) and the Substance Abuse and Mental Health Services Administration (SAMHSA), announced proposed changes to the Confidentiality of Substance Use Disorder (SUD) Patient Records under 42 CFR part 2 (“Part 2”), which protects patient privacy and records concerning…
A Hospital Mailed a Patient’s Confidential Diagnosis to a Rando. You’ll Never Guess What Happened Next–ZD v. Community Health
Eric Goldman writes: The facts in this case are so bizarre and outrageous that I had to read them several times: On September 30, 2018, Z.D. underwent an examination and medical testing in the emergency department of a Community facility in Indianapolis. Afterward, Community was unable to contact Z.D. via telephone to notify her of…