Health Information Compliance Alert
Toolkit:
Use A Cheat-Sheet To Understand Required Vs. Permitted Disclosures
Published on Tue Mar 15, 2016 
PDF
PDF
Either way, you need a paper trail with the individual’s signature.
When a patient wants a covered entity (CE) to disclose his protected health information (PHI) to a third party, HIPAA regulations cover this situation in two separate ways. In one way, this is a required disclosure under HIPAA’s right of access. In another way, this is a permitted disclosure with a valid HIPAA authorization.
If you find this overlap of the HIPAA rules confusing, here’s a handy table that illustrates the differences between the two:
Source: www.hhs.gov/hipaa/for-professionals/privacy/guidance/access/index.html.
Other Articles in this issue of
Health Information Compliance Alert
- Case Study:
Should You Pay A Ransom To Get Your PHI Back?
Experts weigh in on what you should do in the event of a ransomware attack. [...] - Data Analytics:
Mobile Health Apps: Balance Security With Opportunities
Wearables provide new ways to promote healthy life - Toolkit:
Use A Cheat-Sheet To Understand Required Vs. Permitted Disclosures
Either way, you need a paper trail with the individual’s signature. When a patient wants [...] - Reader Question:
When Does HIPAA Trump State Fees For Providing Copies Of PHI?
Question: What should we do if our state law is different from HIPAA regarding fees that [...] - Reader Question:
How Can You Prevent A Virus From Spreading?
Question: If we find that a virus is introduced to our IT systems, what steps can [...] - Enforcement News:
Beware Of Posting Patient Testimonials On Your Website
Plus: Get ready for new regs governing substance abuse confidentiality. Watch out: The HHS Office [...]
View All