I wish to add to the note that I blogged earlier here regarding electronic health records. I wish to emphasis the extreme dangers of such EHRs.
The Cleveland Clinic Foundation incident of HIPAA violations regarding release of a patient’s confidential medical records to me when I am not the patient’s doctor, is not an isolated event. These violations happen frequently.
What I actually found out through my investigation of this incident is that the error occurred at initial intake at the hospital of concern.
Last week I received a fax from CCF, that had my name on it. The letter was written to me from a CCF doctor on a patient that isn’t mine. I contacted CCF supervisor “Provider Relations” and I informed her that this is another HIPAA violation and that they need to notify the patient of a security breach to their medical records. I informed her of the big liability for me due to my name being listed as the doctor and that I want their legal department to send me a letter indicating that my name would be removed from such medical documents.