Privacy of Medical Information June 17, 2003
House Financial Services 2 EPIC Testimony
medical insurance, fired, or subjected to any number of other negative consequences
when their health records are disclosed to employers.
Today doctors are taking extraordinary measures to safeguard patients’ files.
Some doctors are withholding medical information from health records to help patients
keep their medical history private. A recent survey of 344 members of the Association of
American Physicians and Surgeons revealed that 87 percent of members surveyed
reported that their patients had requested that they exclude data from patients’ medical
records, and 78 percent of those surveyed complied. In addition, almost one-fifth
admitted to making false entries on medical records.
2
The absence of effective medical privacy protection adversely affects the delivery
of medical care. Janlori Goldman, Director of the Health Privacy Project at Georgetown
University, observed in a recent survey for the California HealthCare Foundation
revealed that one out of six people “withdraws from full participation in their own health
care” because of fear that health care information will be used without their permission.
3
The Labor, Justice, and Health and Human Services Departments found that 63% of
individuals surveyed for a report would decline genetic testing if employers or insurers
could obtain the results.
4
Still another way an individual’s medical information is misused and even
exploited is when personal medical records are shared or sold for marketing purposes.
Marketing provisions in medical privacy law permit “doctors, HMOs, and other
healthcare groups to use personal patient data . . . for marketing purposes.”
5
Many on-line
health sites collect information about visitors’ browsing, buying and clicking habits.
According to Ms. Goldman, “The business model of many health sites is based on the
collection, use, and resell of personal health data.” Many drug companies probably
already know much more about us than we want them to.
The challenges of medical record privacy are likely to increase. Some companies
are not only collecting medical information, but also DNA sample. Genelex, a genetics
company in Redmond, Washington, “has amassed 50,000 DNA samples, many gathered
surreptitiously for paternity testing.” According to “CEO Howard Coleman[,] ‘Siblings
have sent in mom’s discarded Kleenex and wax from her hearing aid to resolve the family
rumors.’” However, whether or not the DNA is collected with an individual’s knowledge,
the data may be “stored without donors’ knowledge. Cells banked for one purpose, such
2
Dana Hawkins, Guarding medical secrets, at a cost, U.S. News & World Report, August 13, 2001.
3
Janlori Goldman and Zoe Hudson, “Virtually Exposed: Privacy And E-Health,” Health Affairs (California
HealthCare Foundation, Nov./Dec. 2000).
4
Joanne L. Hustead, Aimee Cunningham, & Janlori Goldman, Genetics and Privacy: A Patchwork of
Protections, prepared for California HealthCare Foundation, Apr. 2002.
5
Dana Hawkins, Medical privacy rules give patients and marketers access to health data, U.S. News &
World Report, Jan. 29, 2001.