Neurosurgery Coding Alert

Reader Question ~ Observe PHI Rules for Patients and Staff

Question: How should a medical facility handle employees- access to their own medical records or protected health information (PHI)?

Missouri Subscriber
 
Answer: Everyone has access rights to their information under HIPAA guidelines. Some facilities with electronic medical records even allow their healthcare provider employees to access their own records with minimal interference from the system.

One way to prevent employees from gaining easy access to their records would be to make them go through the normal access procedures, just like any other patient would have to go through. State regulations can also make accessing their records more difficult for employees. 

Example: Some state laws contain a -prior physician review- requirement before accessing PHI. HIPAA would likely -- though not definitely -- pre-empt the state law if that state law imposes a prior physician review requirement. Review your state laws to determine how they approach this requirement. Answers to You be the Coder and Reader Questions were reviewed by Gregory Przybylski, MD, director of neurosurgery at the New Jersey Neuroscience Institute, JFK Medical Center in Edison, N.J.
You’ve reached your limit of free articles. Already a subscriber? Log in.
Not a subscriber? Subscribe today to continue reading this article. Plus, you’ll get:
  • Simple explanations of current healthcare regulations and payer programs
  • Real-world reporting scenarios solved by our expert coders
  • Industry news, such as MAC and RAC activities, the OIG Work Plan, and CERT reports
  • Instant access to every article ever published in Revenue Cycle Insider
  • 6 annual AAPC-approved CEUs
  • The latest updates for CPT®, ICD-10-CM, HCPCS Level II, NCCI edits, modifiers, compliance, technology, practice management, and more

Other Articles in this issue of

Neurosurgery Coding Alert

View All