Mark Pedersen III
New Member
- Jurisdiction
- California
So I am making a mobile application,
And part of that is that patients can leave testimonials for their doctor (and we are paid by the doctor, so I believe we are a business associate).
No information about the patient is collected other than what they say in their paragraph.
We don't ask for names, emails, or that they were even a patient.
My worry is that instead of saying "I had X surgery and I feel great"
They would say "my name is Y, I had X surgery and I feel great".
If they did say their name, does that throw us out of HIPAA compliance? Or because they wrote it in themselves, it's okay to appear on our platform, and be transmitted on our servers?
And part of that is that patients can leave testimonials for their doctor (and we are paid by the doctor, so I believe we are a business associate).
No information about the patient is collected other than what they say in their paragraph.
We don't ask for names, emails, or that they were even a patient.
My worry is that instead of saying "I had X surgery and I feel great"
They would say "my name is Y, I had X surgery and I feel great".
If they did say their name, does that throw us out of HIPAA compliance? Or because they wrote it in themselves, it's okay to appear on our platform, and be transmitted on our servers?
Last edited: