Not yet a Member?
HR Magazine is highlighting the next generation of HR leaders.
Is your employee handbook ready for the New Year? With SHRM’s Employee Handbook Builder get peace of mind that your handbook is up-to-date.
30+ HR education programs, including 4 NEW programs on hot topics, are available for registration.
Join us in Chicago for the latest trends and technology in talent management, and what to expect in the future.
The HIPAA Privacy Rule would most likely not apply to these situations if the employee disclosed the information directly to the employer. If the employer obtained the information from the health care plan or provider, the Privacy Rule would apply as there would be protected health information (PHI) involved. In any event, before an employer discloses or announces any employee's personal and health-related information, it should follow the best practice of obtaining the employee's permission to do so.
The Department of Health and Human Services (DHSS) in its
Summary of the HIPAA Privacy Rule states:
"The Privacy Rule protects all
health information' held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper, or oral. The Privacy Rule calls this information 'protected health information (PHI).' 'Individually identifiable health information' is information, including demographic data, that relates to:
You have successfully saved this page as a bookmark.
Please confirm that you want to proceed with deleting bookmark.
You have successfully removed bookmark.
Please log in as a SHRM member before saving bookmarks.
Your session has expired. Please log in again before saving bookmarks.
Please purchase a SHRM membership before saving bookmarks.
An error has occurred
Recommended for you
Join SHRM's exclusive peer-to-peer social network
SHRM’s HR Vendor Directory contains over 3,200 companies