Not a Member? Get access to HR news and resources that you can trust.
Change can be scary, but deploying new HR software doesn't have to be.
Is your employee handbook ready for the New Year? With SHRM’s Employee Handbook Builder get peace of mind that your handbook is up-to-date.
Get the HR education you need without travel expenses or time out of the office.
We don’t just visit a city, we take it over. Join the HR community in NOLA -- June 18-21, 2017.
The HIPAA Privacy Rule would most likely not apply to these situations if the employee disclosed the information directly to the employer. If the employer obtained the information from the health care plan or provider, the Privacy Rule would apply as there would be protected health information (PHI) involved. In any event, before an employer discloses or announces any employee's personal and health-related information, it should follow the best practice of obtaining the employee's permission to do so.
The Department of Health and Human Services (DHSS) in its
Summary of the HIPAA Privacy Rule states:
"The Privacy Rule protects all
health information' held or transmitted by a covered entity or its business associate, in any form or media, whether electronic, paper, or oral. The Privacy Rule calls this information 'protected health information (PHI).' 'Individually identifiable health information' is information, including demographic data, that relates to:
You have successfully saved this page as a bookmark.
Please confirm that you want to proceed with deleting bookmark.
You have successfully removed bookmark.
Please log in as a SHRM member before saving bookmarks.
Your session has expired. Please log in again before saving bookmarks.
Please purchase a SHRM membership before saving bookmarks.
An error has occurred
Recommended for you
CA Resources at Your Fingertips
SHRM’s HR Vendor Directory contains over 3,200 companies