Medical records and privacy: empirical effects of legislation.
McCarthy, D B
OBJECTIVE: To determine the effects of state legislation requiring patient informed consent prior to medical record abstraction by external researchers for a specific study. DATA SOURCES/STUDY SETTING: Informed consent responses obtained from November 1997 through April 1998 from members of a Minnesota-based IPA model health plan. STUDY DESIGN: Descriptive case study of consent to gain access to medical records for a pharmaco-epidemiologic study of seizures associated with use of a pain medication that was conducted as part of the FDA's post-marketing safety surveillance program to evaluate adverse events associated with approved drugs. DATA COLLECTION: The informed consent process approved by an institutional review board consisted of three phases: (1) a letter from the health plan's medical director requesting participation, (2) a second mailing to nonrespondents, and (3) a follow-up telephone call to nonrespondents. PRINCIPAL FINDINGS: Of 140 Minnesota health plan members asked to participate in the medical records study, 52 percent (73) responded and 19 percent (26) returned a signed consent form authorizing access to their records for the study. For 132 study subjects enrolled in five other health plans in states where study-specific consent was not required, health care providers granted access to patient medical records for 93 percent (123) of the members. CONCLUSION: Legislation requiring patient informed consent to gain access to medical records for a specific research study was associated with low participation and increased time to complete that observational study. Efforts to protect patient privacy may come into conflict with the ability to produce timely and valid research to safeguard and improve public health.
ACESSO AO ARTIGOhttp://www.pubmedcentral.nih.gov/articlerender.fcgi?artid=1089011
- Privacy, confidentiality, and electronic medical records.
- Genetic privacy: orthodoxy or oxymoron?
- Anonymity, confidentiaity, and invasions of privacy: responsibility of the researcher.
- Health services research centers: the concept, experience, and new legislation.
- Bioterrorism Surveillance and Privacy: Intersection of HIPAA, the Common Rule, and Public Health Law