Home › Forums › Decaffeinated Coffee › Working Bochurim Shidduchim Corona › Reply To: Working Bochurim Shidduchim Corona
Why is it OK to violate HIPAA laws when investigating possible health concerns?
Not sure who you think is violating HIPAA laws…
“Who Must Follow These Laws
We call the entities that must follow the HIPAA regulations “covered entities.”
Covered entities include:
Health Plans, including health insurance companies, HMOs, company health plans, and certain government programs that pay for health care, such as Medicare and Medicaid.
Most Health Care Providers—those that conduct certain business electronically, such as electronically billing your health insurance—including most doctors, clinics, hospitals, psychologists, chiropractors, nursing homes, pharmacies, and dentists.
Health Care Clearinghouses—entities that process nonstandard health information they receive from another entity into a standard (i.e., standard electronic format or data content), or vice versa.
In addition, business associates of covered entities must follow parts of the HIPAA regulations.
Often, contractors, subcontractors, and other outside persons and companies that are not employees of a covered entity will need to have access to your health information when providing services to the covered entity. We call these entities “business associates.” Examples of business associates include:
Companies that help your doctors get paid for providing health care, including billing companies and companies that process your health care claims
Companies that help administer health plans
People like outside lawyers, accountants, and IT specialists
Companies that store or destroy medical records
Covered entities must have contracts in place with their business associates, ensuring that they use and disclose your health information properly and safeguard it appropriately. Business associates must also have similar contracts with subcontractors. Business associates (including subcontractors) must follow the use and disclosure provisions of their contracts and the Privacy Rule, and the safeguard requirements of the Security Rule.
Who Is Not Required to Follow These Laws
Many organizations that have health information about you do not have to follow these laws.
Examples of organizations that do not have to follow the Privacy and Security Rules include:
Life insurers
Employers
Workers compensation carriers
Most schools and school districts
Many state agencies like child protective service agencies
Most law enforcement agencies
Many municipal offices”
If your question is why it is important to know about possible medical issues in a shidduch, I’m afraid I’m not going to be able to give you an answer which will satisfy you, but it’s pretty self-evident to most.