Medical Records Privacy: Access Needed for Health Research, but Oversight of Privacy Protections Is Limited

HEHS-99-55 Published: Feb 24, 1999. Publicly Released: Feb 24, 1999.

Highlights

Pursuant to a congressional request, GAO reviewed the types of health research conducted outside the Common Rule and Federal Drug Administration (FDA) regulations, focusing on: (1) examining how medical information is used for research and the need for personally identifiable information; (2) identifying research that is and is not subject to current federal oversight requirements; (3) examining how institutional review boards (IRB) ensure the confidentiality of health information used in research; and (4) identifying the safeguards health care organizations have put in place to protect the confidentiality of health information used in research.

Full Report

Full Report (32 pages)

Office of Public Affairs

Chuck Young

Managing Director

youngc1@gao.gov

(202) 512-4800

Topics

Health Care

Ethical conductHealth research programsInformed consent (medical law)Internal controlsMedical information systemsMedical recordsMedical researchResearch program managementRight of privacyInvestment Review Board