Not a Member? Get access to HR news and resources that you can trust.
Don't leave the task of calculating total cost of workforce to the finance department.
Is your employee handbook ready for the changing world of work? With SHRM’s Employee Handbook Builder get peace of mind that your handbook is up-to-date.
60+ new SHRM Seminar dates in 10 U.S. cities and virtually.
Expand your influence and learn how to become an effective leader -- Join us in Phoenix, AZ, October 2-4, 2017.
The HIPAA Privacy Rule would most likely not apply to these situations if the employee disclosed the information directly to the employer. If the employer obtained the information from the health care plan or provider, the Privacy Rule would apply as there would be protected health information (PHI) involved. In any event, before an employer discloses or announces any employee's personal and health-related information, it should follow the best practice of obtaining the employee's permission to do so.
The Department of Health and Human Services (DHSS) in its
Summary of the HIPAA Privacy Rule states:
"The Privacy Rule protects all
health information' held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper, or oral. The Privacy Rule calls this information 'protected health information (PHI).' 'Individually identifiable health information' is information, including demographic data, that relates to:
You have successfully saved this page as a bookmark.
Please confirm that you want to proceed with deleting bookmark.
You have successfully removed bookmark.
Please log in as a SHRM member before saving bookmarks.
Your session has expired. Please log in again before saving bookmarks.
Please purchase a SHRM membership before saving bookmarks.
An error has occurred
Recommended for you
Become a SHRM Member
SHRM’s HR Vendor Directory contains over 3,200 companies