Under what condition can health care providers share PHI for research without patient consent?

Health care providers can share protected health information (PHI) for research purposes without patient consent when a waiver is obtained from an Institutional Review Board (IRB). The IRB's role is to ensure that the welfare and rights of research subjects are protected. In certain circumstances, the IRB can determine that the research meets specific criteria allowing the use of PHI without patient consent. This includes assessments regarding minimal risk to subjects, the impracticability of obtaining consent, and the fact that the research could not practically be conducted without the waiver being granted.

The other options do not align with HIPAA regulations. Payment offered by a researcher does not justify the use of PHI without consent. Similarly, patient unreachability is not a valid reason to bypass consent, as other avenues should be pursued before resorting to consent waivers. Conducting research by internal staff does not exempt a study from the requirement of obtaining consent or the need for an IRB review under HIPAA.