• Jarlsburg@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    edit-2
    11 months ago

    I worked at a pharmacy and the only time it actually happened was when a patient tried to sell their Vicodin to an undercover cop outside the store. The cop came in and asked for the information about the prescription and we gave it to him.

      • Jarlsburg@lemmy.world
        link
        fedilink
        English
        arrow-up
        7
        ·
        edit-2
        11 months ago

        Yeah, I didn’t say any of that but ok. HIPAA/employers actually require you to give law enforcement information in a variety of situations, including specifically the situation I mentioned:

        To report PHI that the covered entity in good faith believes to be evidence of a crime that occurred on the covered entity’s premises (45 CFR 164.512(f)(5)).

        HHS - When does the Privacy Rule allow covered entities to disclose information to law enforcement

        • mx_smith@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          11 months ago

          Is that without a warrant? It wouldn’t be hard to impersonate a cop or even a cop with a grudge against someone to come find out what medications they are taking to dig further into someone’s lives and ruin said life.

          • Jarlsburg@lemmy.world
            link
            fedilink
            English
            arrow-up
            2
            ·
            11 months ago

            Yes, without a warrant. It’s in the Privacy Notice in any retail pharmacy.

            Impersonating a cop is a pretty big step that’s illegal in its own right but we did have moms trying to see if their adult daughter was on birth control, but that’s pretty easy to stop. Just lock their profile and ask the patient to make up a passcode or only deal with them in person.