Menu
Close Menu
Search

Discussing Patients on Social Media?

Question: I like to chat on social media sites (e.g., Twitter and Facebook) with colleagues about difficult cases. I always remove the patient's name from any discussions. Anything else I should be aware of?

Posted in Risk Management on Wednesday, August 12, 2015

Answer: The most important thing to remember is that even an inadvertent, seemingly innocuous disclosure of a patient’s protected health information (PHI) through social media can get you in trouble with HIPAA, state privacy laws and state chiropractic boards.

PHI is defined under HIPAA that which is in part:

  • Created or received by a doctor.
  • Relates to the health or condition of an individual.
  • Identifies the individual (or there is reason to believe the information can be used to identify the individual).
  • Is transmitted by or maintained in electronic media, or transmitted or maintained in another form or medium.

Under HIPAA, a doctor may use and disclose PHI for “treatment, payment or healthcare operations,” but doing so through social media does not qualify. If a doctor were to use or disclose a patient’s PHI without permission, this would be a violation of HIPAA--and likely state law, as well.

To be able to use this information without the patient’s consent, a doctor must modify what is released so the patient is not identifiable. It is pretty straightforward that a doctor must remove the patient’s name, geographic information, dates (e.g. birth date and dates of care), telephone and fax numbers, email addresses, Social Security number, clinical record number, and images of the patient’s face. 

Where it gets tricky, especially considering the amount of personal information available on the Internet is that a doctor must also remove “other unique identifying numbers, characteristics or codes.” Even a small amount of information put into a search engine will generate relevant “hits” that make it difficult to comply with HIPAA standards.

Doctors face multiple penalties for not complying. Not only can the federal government impose civil and criminal sanctions under HIPAA, individual states can enforce penalties that vary from state to state. The patient also may sue for privacy violations. Although HIPAA does not afford patients the right to bring a private cause of action against a doctor, state law often allows it.

Also, state boards often have the right to impose penalties for privacy violations. These can include suspension or termination of a doctor’s license. Even doctors who “like,” “share,” “re-tweet,” or comment on inappropriate social media posts can be reprimanded.

Resources by Topic

Knowledge to keep you sharp

Whether you're looking for articles, videos, resources, or tools on the business aspects of starting or growing a chiropractic practice, we're here for you.

Hiring & Retaining Talent in the New World - Chiropractical Podcast Hiring & Retaining Talent in the New World - Chiropractical Podcast Podcast | Risk Management Hiring post-COVID is a whole different animal. We talk to Dr. Mark Sanna about how to find and keep great chiropractic employees in this new world. An... Patient and DC Disagree on Date(s) of Treatment Patient and DC Disagree on Date(s) of Treatment Case Studies | Examiner eNewsletter Jessica Johnson, 42, had a long history of occasional headaches and low back pain related to poor posture. Her condition was made worse by a teaching ... Marijuana and Your Practice Marijuana and Your Practice Article | Risk Management What does legal marijuana use mean for your practice and your patients? We talked to an attorney about concerns and considerations you may want to pon... Chiropractic Care | Chronic Pain | Opioids Chiropractic Care | Chronic Pain | Opioids Webinar | Risk Management The chiropractic profession is uniquely positioned to deliver this care—are you?

Read more articles

This website uses first party and third party cookies to improve your experience and anonymously track site visits. By visiting this website, you opt-in to the use of cookies. OK