The Health Care industry has been undergoing enormous changes in every aspect. The rapid development of electronic medical records has demanded greater safety protocols and modification of privacy rules governing the use and disposition of patient medical information. The development of HIPPA Privacy Rule has established national standards to protect medical records and other health information. According to HHS.gov “The Hippa Privacy Rule has established appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures of such information without patient authorization” (HHS, 2017). However according to Parry Aftabs Blog, “the HIPPA privacy …show more content…
These four conditions, according to reading material (Berowitz, 2017) includes, “health care organization must have written consent from patients. The party making the communication must disclose any direct or indirect remuneration received by the covered entity for making the communication and must provide instruction on how to opt out of similar future communication. Finally, the communication must explain why the individual was targeted for the communication, in those instances where the PHI was used to target the communication to particular individuals based upon their health status or condition.” Furthermore, if the conditions are not met, an organization found in violation of HIPPA regulation may face both criminal and civil penalties. According to an article by George Indest, “criminal penalties may include fines of $50,000, and imprisonment for one year, or $100,000 with up to five years in prison and finally, $250,000 and imprisonment for up to 10 years bases on the pretence and severity of the violation. Additionally, civil penalties include minimum fines from $100 to $50,000 per violation and maximum fines of $50,000 per violation, with an annual maximum of $1.5 million based on knowledge, intent, and corrective actions.” (Indest,