Q: Do HIPAA regulations forbid employees from accessing their own records? For example, could a hospital employee review the results of his or her recent laboratory test?
HIPAA Weekly Advisor, May 5, 2008
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
A: The HIPAA privacy rule does not prohibit healthcare organization employees from accessing their own records. In fact, the privacy rule gives individuals the right to access their PHI. However, your organization’s policies may regulate this practice.
Many healthcare organizations have written policies that prohibit employees from using electronic health records (EHR) to access their own PHI. Instead, they require employees to request access to their PHI through the HIM department, just as they do all other patients.
Editor's note: Mary Brandt, president of Bellaire, TX-based Brandt & Associates, LLC, answered this question. This is not legal advice. Consult your attorney for legal matters.
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Comments
0 comments on “Q: Do HIPAA regulations forbid employees from accessing their own records? For example, could a hospital employee review the results of his or her recent laboratory test? ”
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Identify potential Medicaid RAC target areas
- HIPAA Q&A: Level of encryption needed for email
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- OB services: Coding inside and outside of the package
- QA:Coding multiple initial infusions
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- What does case-mix index mean to you?
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched