Patients need to be able to trust that physicians will protect information shared in confidence. They should feel free to fully disclose sensitive personal information to enable their physician to most effectively provide needed services. Physicians in turn have an ethical obligation to preserve the confidentiality of information gathered in association with the care of the patient.
For any other disclosures, physicians should obtain the consent of the patient (or authorized surrogate) before disclosing personal health information.
AMA Principles of Medical Ethics: III, IV, VII, VIIIElectronic communication can raise special concerns about privacy and confidentiality, particularly when sensitive information is being conveyed. Physicians using electronic communication hold the same ethical responsibilities to patients as they do during other clinical encounters.
Opinion 3.1.1Respecting patient privacy is a fundamental expression of respect for patient autonomy and a prerequisite for trust. Patient privacy includes personal space (physical privacy), personal data (informational privacy), personal choices, including cultural and religious affiliations (decisional privacy), and personal relationships with family members and other intimates (associational privacy). Physicians must seek to protect patient privacy in all settings to the greatest extent possible.
Opinion 3.2.2In general, patients are entitled to the same respect for the confidentiality of their personal information after death as they were in life, with a few exceptions. Physicians have a corresponding obligation to protect patient information, including information obtained postmortem.
Opinion 3.2.4Information gathered and recorded in association with the care of a patient is confidential. Disclosing information to third parties for commercial purposes without consent undermines trust, violates principles of informed consent and confidentiality, and may harm the integrity of the patient-physician relationship.
Opinion 3.3.2Information gathered and recorded in association with the care of a patient is confidential, regardless of the form in which it is collected or stored.
Opinion 4.1.3Patients who undergo genetic testing have a right to have their information kept in confidence, and a variety of state and federal laws prohibit discrimination by employers, insurers, and other third parties based on genetic information.