Yikes, yes I have made a mess of trying to explain my point of view. All information is protected, my point was if the information is sitting in a paper chart (not EMR) and not being sent electronically for insurance, billing or coordination of care there is no need for HIPAA compliance as they are not being sent to an external source and in need of HIPAA protection (The digital or electronic protection). No my hospital sees anyone in need of care regardless of their ability to pay. I give up, am not able to explain what I want to say....maybe another day.
I don't mean to prolong this, but even without electronic transmission, there seems to be plenty of room for HIPAA violations. For example, my understanding from MDs in the family is they can't discuss a patient's data with third parties, other than law enforcement, etc., unless the patient has listed that party on his or her HIPAA form. So even sharing personal information about a patient in a face-to-face conversation with an unauthorized person, no electronics involved, would be a violation, let alone sharing their Social Security number.