In today’s world of increasingly connected healthcare data, CIOs and other healthcare IT professionals often see the unintended consequences when two public policies clash.
A case in point is 42 CFR Part 2 and the Health Insurance Portability and Accountability Act (HIPAA).
42 CFR Part 2 was designed to protect the privacy of patients undergoing treatment for substance use disorders. The thinking was that prohibiting unauthorized disclosures of patients’ records would allay confidentiality concerns, which some people struggling with addiction say prevents them from seeking help.