Rachel Raven FNP-C PLLC
Physical: 137 E Main St Mailing: PO Box 361
Gouverneur NY 13642
Phone (315) 323-7360
Fax (315) 216- 3545
What is HIPAA Authorization?
HIPAA stands for Health Insurance Portability & Accountability Act. The HIPAA Privacy Rule (effective since April 14, 2003) introduced standards covering allowable uses and disclosures of health information, including to whom information can be disclosed and under what circumstances protected health information can be shared.
The HIPAA Privacy Rule permits the sharing of health information by healthcare providers, health plans, healthcare clearinghouses, business associates of HIPAA-covered entities, and other entities covered by HIPAA Rules under certain circumstances. In general, terms, permitted uses and disclosures are for treatment, payment, or healthcare operations.
HIPAA authorization is consent obtained from a patient that permits a covered entity or business associate to use or disclose PHI to an individual/entity for a purpose that would otherwise not be permitted by the HIPAA Privacy Rule.
When is HIPAA Authorization Required?
45 CFR §164.508 details the uses and disclosures of PHI that require authorization to be obtained from a patient before information can be shared or used by ANY third party.
HIPAA Privacy Policy
The primary purpose of seeking medical records is to coordinate care with treating healthcare providers.
The patient will be asked to sign a record release for each entity requested. Unless otherwise specified on that form, the record request will be valid for 90 days from the date of signature. This can be revoked at any time and requires the patient to provide the request in writing.
Further release of records from DOT Physical & Family Health to other entities (health care provider, individual, or other) can be sought by the patient by providing the request in writing.
If a patient requests their medical records be sent to another entity, there may be a fee associated with this.
Rachel Raven FNP-C PLLC 