Protecting the Privacy of Employees' Health Information

Stonehill seeks to always ensure the privacy of all medical records and other individually identifiable health information at all times. Information relating to a patient’s health care history, diagnosis, condition, treatment, or evaluation shall be considered individually identifiable health information. Confidentiality of this information is maintained at all times, and may only be disclosed with the express written consent of the patient, unless otherwise required by law. Non-individually identifiable health information, (e.g. health information that cannot be linked to a specific patient) is not included within the definition of protected health information

An individual’s health information can be used for health purposes only. Stonehill College shall not publish or otherwise make generally available any information or data that identifies a patient for purposes other than treatment, payment, or other health care operations, without their express written consent. This does not restrict the internal use of such information or data that is required in the performance of the scope of work that Stonehill performs. Stonehill maintains physical, electronic, and procedural safeguards to protect individually identifiable health information. Stonehill is continually assessing those safeguards and making ongoing improvements to maintain and enhance our level of security for individually identifiable health information.

Stonehill ensures that health information is not used for non-health purposes. Patient information can be used or disclosed only for purposes of treatment, payment, and health care operations. Health information cannot be used for purposes not related to health care without explicit authorization from the patient.