Opinion 7.025 - Records of Physicians: Access by Non-Treating Medical Staff
Physicians who use or receive information from medical records share in the responsibility for preserving patient confidentiality and should play an integral role in the designing of confidentiality safeguards in health care institutions. Physicians have a responsibility to be aware of the appropriate guidelines in their health care institution, as well as the applicable federal and state laws.
Informal case consultations that involve the disclosure of detailed medical information are appropriate in the absence of consent only if the patient cannot be identified from the information.
Only physicians or other health care professionals who are involved in managing the patient, including providing consultative, therapeutic, or diagnostic services, may access the patient’s confidential medical information. All others must obtain explicit consent to access the information. Monitoring user access to electronic or written medical information is an appropriate and desirable means for detecting breaches of confidentiality. Physicians should encourage the development and use of such monitoring systems.
This opinion focuses on the issue of access to medical records by medical staff not involved in the treatment or diagnosis of patients. It does not address the need to access medical records for clinical research, epidemiological research, quality assurance, or administrative purposes. (IV)