Case 01
You see this tweet from an anesthesiologist (an anonymous account) you follow:
On call. Urology resident told me there's a 36 hour priapism that will likely goto the OR. 8o
Followed by this:
I'm dreading having to go talk to him, poor thing must be freaking mortified.
There is some chatter about the case:
Holy. Cow. I don't even have a penis and that makes me hurt.
Sorry had to say it...r u sure the pat wasn't staring at you for 36hrs..
In reply to a question the original tweeter states:
Apparently he has no risk factors (sickle cell, cocaine, etc) except for having a penis. :(
Discussion
Is this a violation of patient privacy?
Is this a HIPAA violation?
How would you handle this?
Case 02
You see this tweet from a nephrologist you follow:
Few things in medicine still take my breath away.
Seeing a patient who turned HIV+ in 1985 and is still healthy, is one of them.
Discussion
Is this a violation of patient privacy?
Is this a HIPAA violation?
How would you handle this?
Case 03 Beware the nudge from friends
Often in these situations, the initial tweet or post is coded. But then as the post gets some traction, people start talking back and forth and additional details slip out.
From Facebook
So I have a patient who has chosen to either no-sow or be late (sometimes hours) for all of her prenatal visits, and NSTs. She is now 3 hours late for her induction. May I show up late to her delivery?
Her friends replied
I'm surprised u see a patient that late. I came 30 min late to my Gyne once and they made me reschedule even though I once waited 2 hrs to be seen by this dr.
It it's elective, it'd be cancelled!
I agree with Dr. Lasser. Cancel the induction.
Then the doctor slipped
here is the explanation why I have put up with it/not cancelled induction: prior stillbirth.
An anonymous onlooker, took a screenshot and posted the conversation to the hospital's moms to be portal. A firestorm erupted with calls to fire the doctor. It made headlines around the English speaking world.
Resources
Unprofessional Physician Behavior on Twitter at 33 Folders
@Doctor_V vs @mommy_doctor: Storm in a #Tweetcup or #HCSM Debate at Scepticemia
Nice discussion of the Priapism Privacy case by AAMC
Great counter point to the 33 Folders article at Movin' Meat. Do not miss the comments
A nice view on how HIPAA is not what we should be shooting for and is it legal should not be the goal of physician social media behavior.
Facebook and the tardy patient.
Remember the role of the First Follower in building a movement
HIPAA
HIPAA list of protected health information
- Names
- All geographical identifiers smaller than a state*
- Dates (other than year) directly related to an individual
- Phone numbers
- Fax numbers
- Email addresses
- Social Security numbers
- Medical record numbers
- Health insurance beneficiary numbers
- Account numbers
- Certificate/license numbers
- Vehicle identifiers and serial numbers, including license plate numbers;
- Device identifiers and serial numbers;
- Web Uniform Resource Locators (URLs)
- Internet Protocol (IP) address numbers
- Biometric identifiers, including finger, retinal and voice prints
- Full face photographic images and any comparable images
- Any other unique identifying number, characteristic, or code except the unique code assigned by the investigator to code the data
De-identification under the Health Insurance Portability and Accountability Act Privacy rule occurs when data has been stripped of common identifiers:
The removal of 18 specific identifiers (Safe Harbor Method):
- Names
- Geographic data
- All elements of dates
- Telephone numbers
- FAX numbers
- Email addresses
- Social Security numbers
- Medical record numbers
- Health plan beneficiary numbers
- Account numbers
- Certificate/license numbers
- Vehicle identifiers and serial numbers including license plates
- Device identifiers and serial numbers
- Web URLs
- Internet protocol addresses
- Biometric identifiers (i.e. retinal scan, fingerprints)
- Full face photos and comparable images
- Any unique identifying number, characteristic or code