10 CFR § 1046.20 - Medical records maintenance requirements.

prev | next
§ 1046.20 Medical records maintenance requirements.

(a) The Designated Physician must maintain all medical information for each employee or applicant as a confidential medical record, with the exception of the psychological record. The psychological record is part of the medical record but must be stored separately, in a secure location in the custody of the evaluating psychologist. These records must be kept in accordance with the appropriate DOE Privacy Act System of Records, available at http://energy.gov/sites/prod/files/maprod/documents/FinalPASORNCompilation.1.8.09.pdf.

(b) Nothing in this part is intended to preclude access to these records according to the requirements of other parts of this or other titles. Medical records maintained under this section may not be released except as permitted or required by law.

(c) Medical records must be retained according to the appropriate DOE Administrative Records Schedule, available at: http://energy.gov/sites/prod/files/cioprod/documents/ADM_1%281%29.pdf (paragraph 21.1)

(d) When an individual has been examined by a Designated Physician, all available history and test results must be maintained by the Designated Physician under the supervision of the PPMD in the medical record, regardless of whether:

(1) The individual completes the examination;

(2) It is determined that the individual cannot engage in physical training or testing and cannot perform the essential functions of the job; or

(3) It is determined that the individual poses a direct threat to self or others.

(e) The Designated Physician must provide written work restrictions to the affected SPO/SO and PF management. PF management must develop, approve, implement, and operate according to site-specific plans based upon the PF contractor's operational and contract structure to ensure confidentiality of PF medical information. This plan must permit access only to those with a need to know specific information, and must identify those individuals by organizational position or responsibility. The plan must adhere to all applicable laws and regulations, including but not limited to the Privacy Act of 1974, the Health Insurance Portability and Accountability Act of 1996, the Family and Medical Leave Act of 1993, and the ADA, as amended by the ADAAA.