DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

What part of the new HIPAA regulations didn't they understand?

Posted on October 17, 2013 by Dissent

So I went to see a surgeon yesterday for a consult on something. I had never been to his office before, and expected I’d have to fill out a bunch of forms.

Not surprisingly, there was a line that asked me for my Social Security number.  I ignored it.

The form asked me my race under “meaningful use” and said they were required by the government to ask that.

The forms did not ask me how they could contact me and to whom else they could disclose my information (friends and family).  The forms made no mention of how they might disclose or share my information.

There was, however, a statement asking me to sign that I had been shown the HIPAA privacy practices notice. Since I hadn’t been given it, I asked to see it.

“Oh, we recently switched over to EMR,” said the cheerful employee at the desk,”so we don’t have to use HIPAA privacy notices any more.”

Say WHAT?

I tried to explain to her that they were seriously misunderstanding the regulations, but I’m sure that my attempts to help sailed over her head and were not relayed up the chain.

Maybe after the surgery is over, I’ll try again….

 


Related:

  • Maintenance Note
  • CISA Alert: Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
  • System Status Note
  • System Status Note
  • Fraudster's fake data breach claims should remind media to be careful what we report
  • "Pompompurin" taken into custody after violating conditions of pre-sentencing release on bond (1)
Category: Uncategorized

Post navigation

← California State University at Sacramento employees are being notified of hack involving their SSN
How a HIPAA BA responds to a patient data breach →

2 thoughts on “What part of the new HIPAA regulations didn't they understand?”

  1. Anonymous says:
    October 17, 2013 at 1:27 pm

    The Notice of Privacy Practices must be made available on the first visit, and then on request, among a few other places. Not doing this is a huge violation of HIPAA as this is where your rights are spelled out. Additionally, all recent NOPP must have new HIPAA provisions included so look for an effective date on or after January of 2013.

    1. Anonymous says:
      October 17, 2013 at 1:48 pm

      Yes. Another one of my new doctors actually had their updated notices with required provisions, but this surgeon’s office blew my mind…

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.