Frequently Asked Questions

Patient Confidentiality

1. Must a pharmacy obtain permission from a patient to enter in or access from a shared database the patient's medical and/or prescription information?
   
   Answer: YES.
   
   
2. Does such permission have to be documented?
   
   Answer: YES. The pharmacist is required to obtain permission that is documented as a patient's express written consent.
   
   
3. What if a person refuses to have his/her information entered into a shared database?
   
   Answer: A consumer may refuse to have his/her information entered into a shared database. The pharmacy that originally filled the prescription must place a "firewall" around the data. This "firewall" must prevent access to patient-specific information by an unauthorized individual at another location.