The page below is a sample from the LabCE course HIPAA Privacy and Security Rules for All Healthcare Personnel. Access the complete course and earn ASCLS P.A.C.E.-approved continuing education credits by subscribing online.

Learn more about HIPAA Privacy and Security Rules for All Healthcare Personnel (online CE course) »
How to Subscribe

Limiting Use and Disclosure of PHI

A covered entity may use or disclose PHI, without getting an individual's authorization, in order to:

  • Perform requested tests and treatments.
  • Bill for the services performed.
  • Perform essential operations, including quality assessment, accreditation, and compliance.
  • Meet legal reporting requirements, including those mandated by public health departments, workers' compensation, law enforcement agencies, and the US Department of Health and Human Services.
  • Other uses and disclosures require written authorization.