The Pennsylvania state medical privacy act contains, among other provisions, provisions for reporting of communicable diseases. Physicians must report people who have or who are suspected of having a communicable disease to the local department of health. To protect patient privacy, state and local health authorities may not disclose these reports or any records maintained as a result of any action taken in response to the report to anyone outside the department of health, except where necessary to control or prevent communicable disease.
Virginia’s medical privacy act gives patients the right to access their medical records held by a health plan, and the right to have the health plan amend those records if they are inaccurate or incomplete. The Virginia medical privacy act, unlike other state medical privacy acts and HIPAA, allows an individual whose rights are violated under that act by a health plan, to file a lawsuit seeking equitable relief (non-monetary relief, such as a court order requiring a provider to release records, or an injunction).
The state of Washington’s medical privacy act contains a requirement that patients be notified of how healthcare providers use or disclose their health information. In Washington, a healthcare provider who maintains a record of a patient’s healthcare information, must place a copy of the notice of privacy practices in a conspicuous place in the healthcare facility, on a consent form, or with a billing or other notice provided to the patient. The notice must generally advise a patient that the facility will not disclose the patient’s information unless authorized by the patient or permitted by law.
What Else Does a State Medical Privacy Act Cover?
A state medical privacy act may also contain provisions for accounting of PHI disclosures, for when PHI may be used for researc