During a Congressional hearing yesterday, Rep. Joe Barton questioned a panel of contractors about commented-out source code in healthcare.gov that tells site users that they have no reasonable expectation of privacy in using the site.
You can watch a very small part of Rep. Barton’s questioning and Rep. Frank Pallone’s subsequent testy response here:
Neither the exchanges nor healthcare.gov are covered entities under the HIPAA Privacy Rule, falling instead under the federal Privacy Act and relevant state laws, among others.
Got that, Rep. Barton? You tried to raise a privacy scare where there was none, and all you and your staffer did was display your ignorance of HIPAA to the public. You might want to be better informed on this important piece of legislation.