Frequently Asked Questions

Patient Confidentiality

  1. Must a pharmacy obtain permission from a patient to enter in or access from a shared database the patient's medical and/or prescription information?

    Answer: YES.

  2. Does such permission have to be documented?

    Answer: YES. The pharmacist is required to obtain permission that is documented as a patient's express written consent.

  3. What if a person refuses to have his/her information entered into a shared database?

    Answer: A consumer may refuse to have his/her information entered into a shared database. The pharmacy that originally filled the prescription must place a "firewall" around the data. This "firewall" must prevent access to patient-specific information by an unauthorized individual at another location.

Last Updated: November 16, 2009