• Categories

  • Pages

  • Archives

Wishing You A Happy Thanksgiving

“As we express our gratitude, we must never forget that the highest appreciation is not to utter words, but to live by them.” –  John F. Kennedy




Wishing our readers a happy, healthy, safe and joyous Thanksgiving,

Lina, Louis, Rich, Ernest and Julia  and the entire the BNI team-family.

How Confidential Are Our Medical Records Really?

confidential medical records

1. Introduction To Healthcare Privacy

Since the introduction of the federal Health Insurance Portability and Accountability Act (HIPAA), many people presume, incorrectly, that all or most of the medical information that they have provided to medical professionals, insurance companies or employers is protected.

The fact of the matter is that individuals often trade confidentiality in return for things such as insurance coverage, employment opportunities, government benefits, or work site health and safety investigations.


2. What types of health and medical information exist?

Health professionals create medical records when they treat patients that generally include medical history, lifestyle details (such as smoking or involvement in high-risk sports), and family medical history. These records may also  contain  lab results, medications prescribed and surgeries.

Health and medical information is also collected from individuals when they apply for disability, life, or accident insurance through private insurers or government programs.

Additionally, individuals often generate health and medical-related information themselves via online research, joining support groups and using mobile apps , (zocdoc.com for example has the user provide significant medical details before scheduling an appointment with one of their participating providers).

3. Who may have access to health and medical information?

a. HIPAA covered entities and their business associates

Healthcare providers, health plans, and healthcare clearinghouses have access to medical records and health information but are also required to comply with HIPAA.

b. Insurance companies

Insurance companies usually require individuals to release records before they will issue a policy or make a payment under an existing policy. Most insurance companies must comply with HIPAA as health plans, but certain types of insurers are not required to comply with HIPAA.

It is important to also your state laws. To find the applicable state’s insurance department, visit the. National Association of Insurance Commissioners website.

c. The Medical Information Bureau

The Medical Information Bureau (MIB Group, Inc.) is a database of medical information shared by life and health insurance companies.

  • The MIB is subject to HIPAA as a business associate of its member health insurance companies.
  • MIB files do not include the totality of one’s medical records as held by a health care provider. Rather it consists of codes signifying certain health conditions.
  • A decision on whether to insure is not supposed to be based solely on the MIB report.

The MIB does not have a file on everyone, and won’t have information on someone who has not applied for individually underwritten life or health insurance in the last seven years. However, people who believe they have an MIB file will want to be sure it is correct.

Individuals can obtain a copy for free once a year by calling (866) 692-6901 or ordering it through MIB’s website.

d. Prescription drug database companies

Two companies, Milliman (IntelliScript) and Ingenix (MedPoint) buy prescription information from pharmacy benefit managers (PBMs) and compile it into reports.  They sell these prescription drug purchase history reports to insurance companies.

e. Financial institutions

Financial transactions are likely to reveal information about where an individual goes for healthcare. This kind of information is not covered under HIPAA. However, the federal Gramm-Leach-Bliley Act (GLB) requires financial institutions to notify individuals of information-sharing practices and provide an opt out for certain third party sharing.

f. Government agencies

Government agencies on all levels (local, state, and federal) may request or receive certain types of health or medical information. For example, government agencies may request medical records or information to verify claims a person makes through Medicare, MediCal, Social Security Disability, and Workers Compensation.

g. Educational institutions

Educational institutions may have records that contain vaccination histories, information about physical examination for sports, counseling for behavioral problems, and records of visits to the school nurse among other things. Privacy of education records is under the control of the U.S. Department of Education and the Family Educational Rights and Privacy Act (FERPA).  HIPAA does not cover education records.  For more information about FERPA, visit the Department of Education’s website on FERPA.

h. The court system and law enforcement

When a person is involved in litigation, an administrative hearing, or a worker’s compensation hearing and his or her medical condition is an issue, the relevant parts of a medical record may be introduced in court.

In addition, law enforcement officials may receive health information in situations such as an instance of abuse, a death, a gunshot or stabbing.

If records are for a legal proceeding, they become a part of public record. Individuals should consult legal counsel for more information.

i. Employers

Employers usually obtain medical information about their employees by asking employees to authorize disclosure of medical records. This can occur in several ways not covered by HIPAA. Depending on state law, employers may have to establish procedures to keep employee medical records confidential. Employees should ask prospective employers about the company’s medical records privacy policy.

j. Marketers and data brokers

Health- and medical-related information may be passed on to marketers and data brokers when individuals participate in informal health screenings or otherwise voluntarily release information in a situation that doesn’t fall under HIPAA or stronger state law.

k. Websites and mobile applications

A tremendous amount of health-related information is available on the Internet. Many sites and discussion forums are available for individuals to share information on specific diseases and health conditions. Websites dispense a wide variety of information, but they also collect a wide variety of information. There is no guarantee of confidentiality when a site isn’t subject to medical privacy laws (and most aren’t).

Personal Health Records (PHRs). PHRs allow consumers to store, manage, and share their health information.  Individuals manage their own PHRs which is what distinguishes them from electronic health records (EHR) that a health care provider controls and populates. Various companies offer PHRs, and features vary.  However many PHRs offer individuals the ability to store and transmit medical history information, prescription information, test results and imaging, drug alerts, immunization records, and treatment plans.
These types of aggregated electronic health records pose a number of privacy risks, here are a few:

  • HIPAA and/or state health privacy laws may not apply to a PHR.
  • The website operator could be asked to turn over customer records as part of a legal proceeding.
  • Website privacy policies are subject to change.

The World Privacy Forum’s Personal Health Records Page contains helpful information.

l. Anyone else to whom an individual reveals the information

It is important for individuals to understand HIPAA’s limits.  The best policy is ask questions and do a little research before revealing health or medical information.   There are many instances in which people create or release health or medical information and there are no applicable privacy laws.  In these cases, it is best to look for and understand any relevant privacy policies the person or company has agreed to follow.

The bottom line is become an informed medical consumer.  For the sake of expediency, we often provide access to our health information and that may be a mistake that cannot be corrected should that data become involved in any sort of civil or criminal proceeding or funds (disability, death benefits…) determination.  Research before you release your private medical records.

BNI Operatives: Street smart; info savvy

As always, stay safe.




Best Day of the Week To…

It’s not magic – just people science.  Believe it or not, you can save a lot of money (and time) by doing certain things on certain days.

Our research combed the records of numerous publications from Forbes to USA Today and below are our results for the  best days:


For traveling by plane

Wednesday is the best day of the week to buy airline tickets.


For moving
Tuesday and Wednesday are the best days to move (…and save the most money).


For staying in a hotel
Sunday is the best day to get a good rate on a hotel room.


For hiring new employees
Wednesday is the best day of the week to post a job ad.


For firing old employees
Friday is the best day of the week to terminate an employee.


For food shopping
Sunday is the best day of the week to buy groceries.


For selling things on eBay
Sunday is the best day of the week to start & end eBay auctions.


For buying a car
Monday is the best day to buy a new car (especially on the last day of the month in September, October, or November).


For getting gas
Sunday is the best day of the week to fill up your gas tank.


For asking for a raise
Friday is the best day of the week to ask for a raise.


For going to a theme park
Monday is the best day of the week to go to Busch Gardens …and other theme parks.


For introducing a new product online
Tuesday is the best day of the week to go “live” with a new computer product or version.



For having a car wash...
Saturday is the best day of the week to have a car wash.


For having a yard sale or garage sale...
Sunday is the best day of the week to have a garage sale or yard sale.


For hosting a children’s party
Friday is the best day of the week to host kids parties.


For finding a job
Monday is the best day of the week to search for jobs.


For scheduling surgery
Tuesday is the best day of the week to have surgery.


For shopping for sales in Paris
Monday is the best day to find bargains in Paris.


For sending email
Sunday is the best day of the week to send email to your constituents …unless you have more than 5,000 constituents.


For getting married
Wednesday is the best day to get married.


For traveling
Saturday is the best day of the week to travel.


For family members
Sunday is the best day of the week to post an obituary.



For writers
Thursday is the best day of the week to launch a new book.


For podcasting...
Tuesday is the best day of the week to post a new podcast.


For getting publicity
Sunday is the best day of the week to try to get free publicity through TV news programs.


For shopping online
Monday is the best day of the week for online shopping.


For buying clothes
Thursday evening is the best day to buy new clothes.


For finding department store bargains
Saturday night is the best day of the week to shop at department stores.


For buying stocks
Friday is the best day of the week to buy stocks.


BNI Operatives: Street smart; info savvy.

As always, stay safe.


%d bloggers like this: