Although the HIPAA Privacy Rule directly effects “Covered Entities” medical device and pharmaceutical manufacturers may be involved in inadvertent release of private patient information and must deal with requirements from their customers that are Covered Entities.
It was reported that:
Eli Lilly, already has settled with eight states and the Federal Trade Commission for $160,000 – and a 20-year administrative order – for mistakenly revealing the identities of 670 Prozac users who signed up for its email alert service.
SoftwareCPR® provides consulting and on-site and web based training in HIPAA privacy and security regulations. SoftwareCPR® also provides a HIPAA Roadmap with links to relevant educational documents to Premium subscribers. Click here to subscribe.
