The Oregon Health Authority shall ensure the appropriate use of member information by coordinated care organizations, including the use of electronic health information and administrative data that is available when and where the data is needed to improve health and health care through a secure, confidential health information exchange.
A member of a coordinated care organization must have access to the member’s personal health information in the manner provided in 45 C.F.R. 164.524 so the member can share the information with others involved in the member’s care and make better health care and lifestyle choices.
Notwithstanding ORS 179.505 (Disclosure of written accounts by health care services provider), a coordinated care organization, its provider network and programs administered by the Department of Human Services for seniors and persons with disabilities shall use and disclose member information for purposes of service and care delivery, coordination, service planning, transitional services and reimbursement, in order to improve the safety and quality of care, lower the cost of care and improve the health and well-being of the organization’s members.
This section does not prohibit the disclosure of information between a coordinated care organization and the organization’s provider network, and the Oregon Health Authority and the Department of Human Services for the purpose of administering the laws of Oregon.
The Health Information Technology Oversight Council shall develop readily available informational materials that can be used by coordinated care organizations and providers to inform all participants in the health care workforce about the appropriate uses and limitations on disclosure of electronic health records, including need-based access and privacy mandates. [Formerly 414.679]