Search warrants and Senate hearing on medical privacy
I'm sitting in a Senate hearing room right now; the topic is medical privacy. Sen. Patrick Leahy (D-Vermont), an occasional friend of civil liberties, is speaking: "How is our right of privacy, one of our most cherised freedoms, going to be protected?" Well, senator, perhaps the best way of protecting our privacy is to ensure that law enforcement officials need a search warrant before browsing through your medical files. Right now police do not need to go before a judge to get your records from your hospital or doctor's office; often "informal arrangements" exist. If a doctor or hospital wants to promise to "protect your privacy," they can't. Yesterday a senior Justice Department official told journalists (in a background briefing at Main Justice) that requiring police to obtain a search warrant could derail counter-terrorism efforts. "Imposing a probable cause standard is something we would vehemently object to," he said. Which explains why he doesn't vehemently object to the legislation this committee is considering. The versions of the "medical privacy" bills I'm familiar with don't include such strict safeguards. We require the FBI to obtain a search warrant to enter your house or office: why shouldn't we require the same for medical files? At yesterday's briefing some of us asked what safeguards are in place to prevent dragnet fishing by police. For instance, what if agents access a 1,000,000-person database during a medical fraud case and stumble across someone who's being treated for illegal drugs? Can they prosecute that person for drug crimes? Yes, they're allowed to but they probably won't. "I don't see that as being a realistic issue," the Justice Department official said. -Declan
At 9:15 AM -0700 10/28/97, Declan McCullagh wrote:
Well, senator, perhaps the best way of protecting our privacy is to ensure that law enforcement officials need a search warrant before browsing through your medical files. Right now police do not need to go before a judge to get your records from your hospital or doctor's office; often "informal arrangements" exist. If a doctor or hospital wants to promise to "protect your privacy," they can't.
Not just this, but doctors and nurses are under strong laws which forbid them from keeping certain kinds of patient information private. For example: * under Tarasoff, counsellors and shrinks must "narc out" their patients who are discussing their fantasies, dreams, past actions, future plans, etc. * gunshot and similar wounds may not be treated in privacy....doctors and nurses face prison time if they don't narc out such patients (One of the books I almost bought at the Gun Show was a controversial and gory book, "Ditch Medicine," intended for treatment of gunshot wounds, emergency amputations, etc., when doctors are not around, as in a battle or in the wilderness, or where a "bootleg doctor" cannot be obtained. No doubt the American Medical Association would like to see this book banned.)
Yesterday a senior Justice Department official told journalists (in a background briefing at Main Justice) that requiring police to obtain a search warrant could derail counter-terrorism efforts. "Imposing a probable cause standard is something we would vehemently object to," he said. Which explains why he doesn't vehemently object to the legislation this committee is considering. The versions of the "medical privacy" bills I'm familiar with don't include such strict safeguards. We require the FBI to obtain a search warrant to enter your house or office: why shouldn't we require the same for medical files?
The "medical privacy" bills are guaranteed to be like other "privacy bills": fig leaves for social planners to hold up in front of Joe Sixpack, but with the usual backdoors. (PGP, Inc. could increase market share by offering a special "Hospital Records Recovery" feature. "It's for the children!!!!") All we need to ensure medical privacy is a return to the right of contract. I pay Dr. Jones for his services and for his agreement to not pass my medical file around to his buddies, or to sell it to advertisers, or to let "counter-terrorism" agents snoop around in his files. Sounds fair to me. (And if he violates this trust, kneecap him in the parking lot....it'll send a message to other contract-breakers.)
At yesterday's briefing some of us asked what safeguards are in place to prevent dragnet fishing by police. For instance, what if agents access a 1,000,000-person database during a medical fraud case and stumble across someone who's being treated for illegal drugs? Can they prosecute that person for drug crimes? Yes, they're allowed to but they probably won't. "I don't see that as being a realistic issue," the Justice Department official said.
Right. Sure. Whatever. Until they decide they want to. America is emulating the Soviet "psychiatric prison" system. Look at Roby Ridge, where some possibly eccentric old lady is being beseiged by Waco-type raiders. Look for her to "set her house on fire." (Not to sound like the little dog in Oz, but: "Pay no attention to the SWAT team pushing the nozzle of a flame thrower under her door.") As for Leahy, he's been a typical political criminal, guilty of several capital crimes, for decades. I was never fooled. --Tim May The Feds have shown their hand: they want a ban on domestic cryptography ---------:---------:---------:---------:---------:---------:---------:---- Timothy C. May | Crypto Anarchy: encryption, digital money, ComSec 3DES: 408-728-0152 | anonymous networks, digital pseudonyms, zero W.A.S.T.E.: Corralitos, CA | knowledge, reputations, information markets, Higher Power: 2^2,976,221 | black markets, collapse of governments. "National borders aren't even speed bumps on the information superhighway."
If you're going to respond to Tim's post, you should copy him or cypherpunks... I've attached your whole message below... I will respond to one point, though:
The free market approach won't keep medical records private.
We haven't tried that approach yet, at least in the late 20th century. The wealth of federal regulation and involvement in health care is breathtaking. Ever since after WWII when for tax reasons businesses began bundling insurance and the rise of medicare/medicaid, well, the "free market" in healthcare has become much less robust. (Fortunately Clinton's socialistic health care plan was derailed.) In other words, the reason a "free market" approach may not work right now is because the market isn't free. -Declan At 13:14 -0800 10/28/97, Jennifer S. Granick wrote:
Tim May wrote:
At 9:15 AM -0700 10/28/97, Declan McCullagh wrote:
Well, senator, perhaps the best way of protecting our privacy is to ensure that law enforcement officials need a search warrant before browsing through your medical files. Right now police do not need to go before a judge to get your records from your hospital or doctor's office; often "informal arrangements" exist. If a doctor or hospital wants to promise to "protect your privacy," they can't.
Not just this, but doctors and nurses are under strong laws which forbid them from keeping certain kinds of patient information private. For example:
* under Tarasoff, counsellors and shrinks must "narc out" their patients who are discussing their fantasies, dreams, past actions, future plans, etc.
This comment probably sent anyone out there who sees a therapist into a downward depressive spiral. But don't worry! That thing you said about your mother last week hasn't been reported to the Feds and included in your FBI file.
Under Tarasoff, a psychiatrist has a duty to warn a foreseeable and identifiable potential victim of his patient's. In other words, if I have a fantasy about killing my boyfriend, he doesn't have to tell. If I talk about killing my boyfriend, and my plans to do so, and it would be unreasonable for the doctor to think that I wasn't going to try to kill my boyfriend, then he has to warn my boyfriend to watch out.
Please read nothing into the fact that I used killing my boyfriend as an example.
* gunshot and similar wounds may not be treated in privacy....doctors and nurses face prison time if they don't narc out such patients
In California, its a misdemeanor punishable by up to 6 months in the county jail and/or a fine of up to $1000. i.e. not state prison, but definitely potential jail time.
-snip-
All we need to ensure medical privacy is a return to the right of contract. I pay Dr. Jones for his services and for his agreement to not pass my medical file around to his buddies, or to sell it to advertisers, or to let "counter-terrorism" agents snoop around in his files. Sounds fair to me.
(And if he violates this trust, kneecap him in the parking lot....it'll send a message to other contract-breakers.)
Here Tim puts his finger on exactly why we can't depend on contracts to preserve our medical privacy. What if the contract is violated? You can't kneecap the guy (well, you *can*, but then we're talking another penal code section), and you can't sue him. (What are your damages? If they're difficult to calculate or forsee, they aren't recoverable under contract law.)
The free market approach won't keep medical records private. Neither will the Constitution. We need federal legislation to create and protect that right.
Jennifer Granick
Declan McCullagh wrote:
Yesterday a senior Justice Department official told journalists (in a background briefing at Main Justice) that requiring police to obtain a search warrant could derail counter-terrorism efforts. "Imposing a probable cause standard is something we would vehemently object to," he said.
Declan, I didn't see anything about it in the news. Did your gun jam? TruthMonger
-----BEGIN PGP SIGNED MESSAGE----- At 11:15 AM 10/28/97 -0500, Declan McCullagh wrote:
Yesterday a senior Justice Department official told journalists (in a background briefing at Main Justice) that requiring police to obtain a search warrant could derail counter-terrorism efforts. "Imposing a probable cause standard is something we would vehemently object to," he said. Which explains why he doesn't vehemently object to the legislation this committee is considering. The versions of the "medical privacy" bills I'm familiar with don't include such strict safeguards. We require the FBI to obtain a search warrant to enter your house or office: why shouldn't we require the same for medical files?
Those of us who pay cash for their medical treatment, or don't maintain any "insurance" policies (public or private), or seek treatment in other (cheaper) countries don't have to worry about those minor privacy violations since we're not in the database (with meaningful key fields). DCF -----BEGIN PGP SIGNATURE----- Version: PGP for Personal Privacy 5.0 Charset: noconv iQCVAwUBNFdS0IVO4r4sgSPhAQEJjQP9FkSkbdXpBog7GH7vJgBn3JKVMiQLssN2 hQ/Xvlu1PT3qGp9I22AfozxpE7jzzHkf3zoy0prl5rnydZTe5iw/1+OEslYVJN70 9KrXf/VcS2aKnoAiY0obRNa7sv/4Pn6ol64FoJhUkgWBFt83qLYQfCKD693NHTlU lO8RI2Of+Ds= =fYT2 -----END PGP SIGNATURE-----
participants (4)
-
Declan McCullagh -
Duncan Frissell -
Tim May -
TruthMonger