Thanks to the folks at the HIPAA blog for the link:
HIPAA Preemption Analysis of State Privacy and Security Laws: You can find it
here, at the site National Association of Chain Drug Stores Foundation.
For example, for Georgia you can find this:
Are there any statutes or regulations governing the privacy of a customer’s personal information used or disclosed by a retail pharmacy?
Yes, in Georgia there are privacy-related statutory and regulatory requirements in the following areas:
· Confidential Information
· Pharmacist-Patient Privilege
In addition, there are information-related statutory and regulatory requirements in the following areas:
· Record Maintenance
· Records of Dispensing
· Automated Data Processing Systems
· Transmission of Prescriptions
· Transfer of Prescriptions