We need a government-run medical records system, so there is one source of truth, which would be illegal to sell or share with anyone other than a patient's doctors. My hospital has changed records systems twice now and my own doctor didn't have access to key information from ten years ago that I remembered but he didn't. It's 2023, for fuck sake.
Right now US privacy laws aren't compatible with one overarching centralized healthcare record.
Short of that, however, would be an interoperable system. Epic, which is the largest US medical record system, allows for different facilities on the same platform to share information. It is up to the specific facility if a records release is required. Most systems in a given region will have that worked out ahead of time and build it into their general consent for treatment (a form everyone signs). It works quite well. Where I practice, I am able to get all the information I need from across the country, assuming they are on the same platform at the time I am seeing the patient.
For other platforms, it's more mixed. Federal law requires certain interoperability, but it is fairly limited and not real time. Generally it involves a flash drive with the info on it.
As for the comment about changing platforms in a similar system, that is a struggle. Hospitals are required to keep patient information forever. When they first started going up on electronic systems, they only went back so many years as the scanning costs were huge. As time has moved forward, many systems are bringing all the information over to the new system so they don't have to maintain more than one electronic system for archive purposes.
Source: I am a physician and chief medical officer.
There are clearly ways around HIPAA. I've had advertising displayed to me that clearly showed they knew that not only had I been to a doctor, but they knew the results of a specific blood test I'd just taken. It's the fucking patient portals. They're clearly harvesting data.
If you ever experience this I highly encourage you to file a HIPAA complaint. They take this very seriously and minimum violations are steep. If you have the time and energy, please bring this to the attention of the clinic or facility you visited - I guarantee you there are staff who are in complete agreement with you and would be furious if this were true.
Some of this could be learned or guessed from your behavior too. Google or FB tracking your location. Combined with other factors they might just even guess the right condition, or you googled something and they combine this data to profile you.
Obviously fully possible that you are right too, but that would be a huuuuge violation for a quick buck.
We kind of have this where I am, insofar as we sign a consent for one doctor to take charge of it (it's ours and we can have copies) and then we can sign in online to see notes and test results, etc. But when I see someone else I have to get copies of their notes sent to my doctor's surgery for them to link to my file. I can't add to it myself, only make requests.
Yeah but you say where you are. Can you use it anywhere in the country with that effect? Maybe if you are not the US but here we don't have a centralized system.
Oh yeah. We know our F'd system is not replicated elsewhere and the sane among us want to copy way more of other countries systems. Its why this is funny (well funny sad) to americans https://youtu.be/qLC48ljmZ78?t=9