Sharing PHI Of HIV Positive Patients – Portland Excuses For The Incident

The HIPAA denies the sharing of secured wellbeing data with outsiders without first acquiring assent from patients. That has driven a few patients to trust the City of Portland abused HIPAA by imparting data on HIV-positive patients to the University of Southern Maine without first getting assent. Portland runs an HIV-positive wellbeing system and people enlisted in that program were not educated that some of their data – their name, address, telephone number and HIV constructive status – would be imparted to USM’s Muskie School of Public Service (MSPS).

The data was partaken with the end goal for MSPs to direct a review in the interest of the city. At the point when that review was directed, it turned out to be clear to patients that some of their PHI had been shared without their insight. Two patients whined that their protection had been damaged. Following receipt of the objections, the city suspended its study and directed an examination concerning the charged security infringement.

While HIPAA Rules might not have been abused, the City of Portland will be issuing a composed statement of regret to every single influenced tolerant – which number more than 200 – about the protection infringement. While some authorities don’t trust HIPAA Rules have been abused, that view isn’t shared by all. Dr. Ann Lemire, a previous executive of Portland’s India Street center had beforehand cautioned the city not to impart the rundown of patients to USM analysts as doing as such would be an infringement of HIPAA.

While HIPAA Rules may enable Portland to share PHI in this occurrence, data seems to host been shared before the two gatherings went into a business relate assertion. The BAA had no effect on how USM secured the rundown and limited access to the common PHI, as strict protection and security arrangements were at that point set up. Notwithstanding, the sharing of the rundown before going into a BAA is something the Department of Health and Human Services’ Office for Civil Rights may research, notwithstanding deciding if assent ought to have been acquired from patients before the data was shared.

In the event that it is found that HIPAA Rules were abused there is potential for a monetary punishment, either from OCR or the Maine lawyer general, who since the HITECH Act was passed, is additionally allowed to make a move against associations, found to have damaged HIPAA Rules.

Tags

Murphy Miller

Murphy Miller

Murphy Miller is the Editor of Healthcare IT Journal, a leading newspaper in the healthcare information technology. Murphy's work covers a variety of topics including healthcare information technology advancements, health policy and compliance, patient privacy and confidentialy, and the financial aspects of healthcare. As the editor of the Healthcare IT Journal, Murphy Miller provides straightforward, informative content to guide professionals and policymakers in the healthcare and IT fields.

Get the free newsletter

Discover everything you need to become HIPAA compliant
Please enable JavaScript in your browser to complete this form.
Name

Read Next

Scroll to Top

Get the free newsletter

Discover everything you need to become HIPAA compliant
Please enable JavaScript in your browser to complete this form.
Name