For those of you who think you are using a local pharmacy, you might want to check whether or not they’re owned by one of these. They buy out local pharmacies without obviously rebranding. And then they kill the store. At least, that’s Rite Aid’s MO.
I might be pretty stupid, but why would police even want medical information? In what way are medical records a help in any police duty?
Edit: thanks for the responses. My only comment is that these examples are fucking terrifying.
Here’s a scary one:
“patient is suspected of having an abortion give me medical records”
“K here you go”
First one that came to mind when I saw the title TBH. First it was period tracking apps, now this. Scary state of things
Finding weaknesses. If a person has breathing difficulties they can save time and don’t need to put their knee on their neck for so long.
Helps a cop gain evidence against a perp.
“You’re on this medication, we got it from X pharmacy. You shouldn’t have been driving while on it, should you?”
I worked at a pharmacy and the only time it actually happened was when a patient tried to sell their Vicodin to an undercover cop outside the store. The cop came in and asked for the information about the prescription and we gave it to him.
Freely admits on the internet to violating someone’s right to due process. But they were a druggie, so no biggie right?
Yeah, I didn’t say any of that but ok. HIPAA/employers actually require you to give law enforcement information in a variety of situations, including specifically the situation I mentioned:
To report PHI that the covered entity in good faith believes to be evidence of a crime that occurred on the covered entity’s premises (45 CFR 164.512(f)(5)).
HHS - When does the Privacy Rule allow covered entities to disclose information to law enforcement
Is that without a warrant? It wouldn’t be hard to impersonate a cop or even a cop with a grudge against someone to come find out what medications they are taking to dig further into someone’s lives and ruin said life.
Yes, without a warrant. It’s in the Privacy Notice in any retail pharmacy.
Impersonating a cop is a pretty big step that’s illegal in its own right but we did have moms trying to see if their adult daughter was on birth control, but that’s pretty easy to stop. Just lock their profile and ask the patient to make up a passcode or only deal with them in person.
bootlicker
Tell him to come back with a warrant
This is the best summary I could come up with:
All of the big pharmacy chains in the US hand over sensitive medical records to law enforcement without a warrant—and some will do so without even running the requests by a legal professional, according to a congressional investigation.
Lawmakers noted the pharmacies’ policies for releasing medical records in a letter dated Tuesday to the Department of Health and Human Services (HHS) Secretary Xavier Becerra.
They include the seven largest pharmacy chains in the country: CVS Health, Walgreens Boots Alliance, Cigna, Optum Rx, Walmart Stores, Inc., The Kroger Company, and Rite Aid Corporation.
The rest of the pharmacies—Amazon, Cigna, Optum Rx, Walmart, and Walgreens Boots Alliance—at least require that law enforcement requests be reviewed by legal professionals before pharmacists respond.
“We urge HHS to consider further strengthening its HIPAA regulations to more closely align them with Americans’ reasonable expectations of privacy and Constitutional principles,” the three lawmakers wrote.
“Last year, CVS Health, the largest pharmacy in the nation by total prescription revenue, only received a single-digit number of such consumer requests,” the lawmakers noted.
The original article contains 714 words, the summary contains 173 words. Saved 76%. I’m a bot and I’m open source!