Comment by ldayley

1 year ago

This has been true for several years. An insurance agent once told me that there are life insurance companies dropping the requirement for blood draws / medical exams and are just buying prescription records to correlate with financial, educational, and other behavioral data.

Edit: changed prescription “data” to “records”

8 comments

ldayley

Reply
dml2135  1 year ago

Wouldn’t this violate HIPAA?

  • warkdarrior  1 year ago

    Depends who is selling that data. Some pharmacy delivery services or billing services may not be covered by HIPAA, since they are not necessarily "covered entities".

    • ethbr1  1 year ago

      Is this true?

      My understanding of HIPAA (possibly incorrect) is that it's attached to the data.

      If a covered provider is leaking HIPAA covered data to a non-covered business associate entity... that's a big no-no and a fine.

      2 replies →

  • cmpxchg8b  1 year ago

    If you agree to the data being shared when signing up for insurance it wouldn’t be a violation.

    • ethbr1  1 year ago

      Do you have any details on this?

      I'm sure there are legal HIPAA data escape pathways (given the financial incentives for companies to find them), but I'm curious on the details.

      Afaik, there's no way to make HIPAA-covered data non-HIPAA-covered, and absent that everyone in the custody chain is responsible for anywhere it eventually ends up.

      That said, I expect the way this works in practice is more likely data that originates with non-HIPAA-covered entities, but can be massaged/combined into a similar product.

simpletone  1 year ago

Not only that, don't insurers offer 'discounts' for installing tracking apps on your phones and devices?