hnroberts
Guest
I would like some input in regards to a situation that came up recently at my office. An employee had posted on Facebook about a patient who had died earlier that same day. This employee used the patient's full name, but didn't state that the person was a patient or a diagnosis. The employee does have the office listed as the employer.
I brought the situation to management's attention, but it seems - according to management, that because the post was done after work hours and the newly deceased patient was a friend of a friend, it's somehow acceptable.
My interpretation of HIPAA is that a patient's name is NEVER to be disclosed like this, especially on Facebook. Is my interpretation incorrect? Is it not a breach of patient confidentiality to post the patient's full name like this?
I know what I believe to be correct, but I would like some other perspectives. Thanks!
I brought the situation to management's attention, but it seems - according to management, that because the post was done after work hours and the newly deceased patient was a friend of a friend, it's somehow acceptable.
My interpretation of HIPAA is that a patient's name is NEVER to be disclosed like this, especially on Facebook. Is my interpretation incorrect? Is it not a breach of patient confidentiality to post the patient's full name like this?
I know what I believe to be correct, but I would like some other perspectives. Thanks!