Conformance with HIPAA "Privacy" Rule Will Undo MN Medical Privacy Laws and Consent Requirements

The so-called “Federal Medical Privacy Rule” (45 CFR Parts 160/164) —from the 1996 Health Insurance Portability and Accountability Act (HIPAA)—permits broad use and disclosure of individually-identifiable “protected health information” without patient consent. It is often referred to as the “HIPAA Privacy Rule” or just “HIPAA.” Minnesota’s medical privacy law (M.S. 144.335) more often requires patient consent before use and disclosure (see also M.S. 62J.55).

view pdf