• Revenue Cycle Management
  • COVID-19
  • Reimbursement
  • Diabetes Awareness Month
  • Risk Management
  • Patient Retention
  • Staffing
  • Medical Economics® 100th Anniversary
  • Coding and documentation
  • Business of Endocrinology
  • Telehealth
  • Physicians Financial News
  • Cybersecurity
  • Cardiovascular Clinical Consult
  • Locum Tenens, brought to you by LocumLife®
  • Weight Management
  • Business of Women's Health
  • Practice Efficiency
  • Finance and Wealth
  • EHRs
  • Remote Patient Monitoring
  • Sponsored Webinars
  • Medical Technology
  • Billing and collections
  • Acute Pain Management
  • Exclusive Content
  • Value-based Care
  • Business of Pediatrics
  • Concierge Medicine 2.0 by Castle Connolly Private Health Partners
  • Practice Growth
  • Concierge Medicine
  • Business of Cardiology
  • Implementing the Topcon Ocular Telehealth Platform
  • Malpractice
  • Influenza
  • Sexual Health
  • Chronic Conditions
  • Technology
  • Legal and Policy
  • Money
  • Opinion
  • Vaccines
  • Practice Management
  • Patient Relations
  • Careers

HIPAA hinders patients’ wish to share online health records with care partners, report says


Elderly or chronically ill patients may want family and friends to have access to their health records, but physicians’ offices run into the legal problem of keeping those records secure.

Elderly or chronically ill patients may want family and friends to have access to their health records, but physicians’ offices run into the legal problem of keeping those records secure. According to a report in the January 22/29 Journal of the American Medical Association (JAMA), privacy and security regulations aren’t keeping up with the convergence of technology and an increased emphasis on care coordination.

Patients often want to share clinical information with care partners. In a survey of more than 18,000 patients, 79% want to share information with someone outside of the healthcare team, and almost half want to share information with someone who doesn’t live with them. JAMA identified these people as care partners-not necessarily day-to-day caregivers, but spouses, relatives, and friends who help the patient with healthcare decisions.

With the rise of online patient portals available through electronic health records (EHRs), it is now possible for patients to share information with loved ones that don’t live with them. JAMA calls for “a more nuanced” access to this information by making it available to each care partner through their own login-not through sharing passwords with the patient.

“Using distinct credentials/authentication for care partners would allow patients to determine which types of information they would like to share,” the JAMA authors state. “Granting separate credentials allows for periodic reauthentication and, if needed, revocation of care partner access.”

Of course, physicians might view this as a security nightmare, as they must comply with the Health Insurance Portability and Accountability Act (HIPAA), and violations can cost thousands or millions of dollars. Minimum HIPAA violation fines average $50,000. The top reasons for violations include the release of unauthorized information, the release of information to an undesignated party, and lack of a patient signature on release forms.

JAMA says that care partners can feel like they are being pushed away in the care coordination system, and that technology advances are the obvious solution. “There is a potential for improving care if care partners and families can be more effectively engaged through EHRs: this can be accomplished without undermining patient privacy or the security of protected health information,” JAMA says.

Related Videos
Georges C. Benjamin, MD
Robert E. Oshel, PhD
Gary Price, MD, MBA
Gary Price, MD, MBA
Kyle Zebley headshot
Kyle Zebley headshot
Kyle Zebley headshot
Michael J. Barry, MD
Hadi Chaudhry, President and CEO, CareCloud
Victor J. Dzau, MD, gives expert advice
© 2023 MJH Life Sciences

All rights reserved.