Comprehensive Guide to HIPAA Authorizations for Estate Planning
HIPAA authorizations are a vital element of a well-rounded estate plan because they let trusted people access medical information when it matters most. In Millington and across Tennessee, a properly drafted HIPAA authorization complements wills, powers of attorney, and advance directives to ensure medical providers can share relevant health records with designated individuals. This introductory overview explains why a signed HIPAA release tailored to your circumstances helps reduce delays, supports informed decision making, and secures important medical details for family members or agents when they need them most.
Many people think estate planning is only about property, but access to medical information is equally important. A HIPAA authorization gives named persons lawful permission to receive protected health information in situations where medical decisions, care coordination, or benefits administration require up-to-date records. Without that authorization, family members or agents may face barriers to obtaining test results, treatment histories, or provider opinions. In Tennessee, aligning a HIPAA authorization with other planning documents makes transitions smoother and helps ensure that health information flows to the right people at critical moments.
Why HIPAA Authorizations Matter in Estate Planning
A properly executed HIPAA authorization delivers clear benefits: it clarifies who may receive medical records, reduces friction with providers, and speeds access to critical health information during medical emergencies or long-term care planning. For those managing chronic conditions or coordinating care across multiple providers, this authorization prevents unnecessary delays that can affect treatment decisions. In estate matters it supports fiduciaries and family members by giving them the ability to gather the data needed for informed decision making, benefits claims, and caregiving coordination, which ultimately preserves the client’s intentions and wellbeing.
About Jay Johnson Law Firm and Our Approach to HIPAA Authorizations
Jay Johnson Law Firm, serving Millington and Shelby County, focuses on practical estate planning and probate services that include HIPAA authorizations tailored to local healthcare systems. Our team works closely with clients to identify who should have access to medical records and to integrate the authorization with durable powers of attorney and advance directives. We emphasize clarity and reliability in document drafting, and we guide clients through state and federal privacy considerations to produce authorizations that providers will accept when timely disclosure of health information matters most.
Understanding HIPAA Authorizations and How They Work
A HIPAA authorization is a written permission that allows healthcare providers to disclose protected health information to designated individuals or entities. It is different from a power of attorney because it specifically addresses privacy and records access under the Health Insurance Portability and Accountability Act. The document should specify who may receive information, what types of records are covered, the purpose of disclosure, and the authorization’s duration. Clear drafting prevents misinterpretation and helps health providers comply with privacy standards while ensuring your selected recipients can obtain necessary records.
In estate planning contexts, HIPAA authorizations support decision makers by granting access to medical histories, lab results, imaging, and other records that inform care and legal steps. The authorization may be limited to certain providers, periods of treatment, or categories of information, depending on your needs. Coordinating the authorization with living wills and financial documents ensures consistent representation across different areas of planning. Regular reviews keep the authorization current with life changes like new providers, family updates, or evolving health conditions to preserve access when needed.
What a HIPAA Authorization Authorizes and When It’s Used
A HIPAA authorization explicitly permits specified healthcare entities to release protected health information to identified recipients. It is used in situations where caregivers, family members, or legal agents must obtain records to make treatment decisions, handle insurance claims, or coordinate services. The authorization outlines the scope of allowed disclosures and may name particular providers, types of records, or timeframes. Because federal privacy rules govern when records can be disclosed, a clear authorization helps bridge privacy protections and practical needs for access in medical and legal contexts.
Key Elements to Include in a HIPAA Authorization
An effective HIPAA authorization contains several essential elements: the name of the patient whose records are covered, the names of authorized recipients, a description of the information to be released, the purpose of the disclosure, and dates limiting the authorization. It should also include instructions on revocation and comply with any provider requirements for signatures and witness or notary needs. Incorporating these elements reduces provider hesitation, avoids disputes about scope, and ensures the document meets legal standards for disclosure while serving the practical needs of caregivers and decision makers.
Key Terms and Glossary for HIPAA Authorizations
Understanding common terms used in HIPAA authorizations helps you make informed choices when naming recipients and limiting access. This glossary explains phrases such as protected health information, designated record set, authorization revocation, and treatment/operations disclosures. Clear definitions allow you to see how each term affects who can obtain records, which records are included, and how long the permission lasts. A thoughtful glossary section paired with sample language helps prevent misunderstandings and supports properly coordinated estate planning documents.
Protected Health Information (PHI)
Protected Health Information, commonly called PHI, refers to any information that relates to an individual’s health status, provision of healthcare, or payment for healthcare that can be linked to that person. PHI includes records such as diagnoses, treatment notes, prescriptions, lab results, imaging studies, and billing information when tied to identifying details. In the context of a HIPAA authorization, PHI is the substance that the patient permits covered entities to disclose to designated recipients for legitimate purposes, enabling coordination of care and legal decision making while still subject to privacy safeguards.
Authorization Revocation
Authorization revocation is the formal act by which a person withdraws previously granted permission for disclosure of protected health information. This process typically requires written notice to the healthcare provider and any record holders who previously relied on the authorization. Revocation stops future disclosures but does not undo disclosures made while the authorization was in effect. Including clear revocation instructions in the authorization helps both patients and providers understand how to terminate access and assures that individuals maintain control over ongoing release of sensitive medical information.
Designated Record Set
A designated record set encompasses the group of records maintained by or for a healthcare provider that are used to make decisions about an individual’s care. This can include medical records, billing information, laboratory reports, and other related documentation. When drafting a HIPAA authorization, specifying whether the permission covers the entire designated record set or only particular categories of records clarifies what recipients may access. Precise language reduces disputes and aligns expectations between patients, providers, and those named to receive records.
Minimum Necessary Standard
The minimum necessary standard requires that disclosures of protected health information be limited to the least amount of information required to accomplish the intended purpose. Even with an authorization in place, providers often consider what portion of the designated record set is necessary for the recipient’s task. Clearly specifying the type and scope of records in the authorization helps providers comply with this standard by directing them to release only the relevant information, rather than broad or unrelated details that are not needed for care coordination, insurance matters, or legal representation.
Comparing Limited and Comprehensive HIPAA Authorization Options
Choosing between a limited and comprehensive HIPAA authorization depends on your goals, the level of access you want to grant, and privacy preferences. Limited authorizations restrict disclosures to specific providers, timeframes, or categories of information, which protects privacy but may require multiple forms for different needs. Comprehensive authorizations grant broader access and can simplify communication across care teams, but they should be drafted carefully to avoid unintended releases. Evaluating these options in the context of your overall estate plan helps strike the right balance between accessibility and confidentiality.
When a Limited HIPAA Authorization May Be Appropriate:
Targeted Access for Specific Providers or Purposes
A limited authorization works well when you know exactly which providers or entities need access for a defined task, such as coordinating care with a specialist or sharing records for a single hospital stay. This approach helps maintain privacy by restricting the release to items directly relevant to the named purpose. For families and caregivers who only need information for a specific incident or short-term treatment episode, a limited authorization reduces unnecessary exposure of broader medical histories while still allowing necessary disclosures for effective care coordination.
Preserving Sensitive Medical Privacy
Individuals who have specific privacy concerns or conditions that they prefer to keep confidential may choose a limited authorization to protect sensitive information. By narrowly defining the types of records or the timeframe covered, the document minimizes the risk of broader disclosure. This is particularly helpful when dealing with stigmatized conditions or highly personal treatment details that the patient does not wish to disclose beyond a small circle of caregivers or for a singular purpose, ensuring privacy while still permitting essential access when necessary.
Why a Broader HIPAA Authorization Can Be Beneficial:
Coordinated Care Across Multiple Providers
A comprehensive authorization can be especially helpful when multiple providers are involved in ongoing care, such as primary physicians, specialists, and long-term care facilities. Granting wider access eliminates the need for multiple narrow releases and reduces administrative delays when records are needed from different sources. For individuals with complex medical needs or long-term care plans, broader authorization simplifies information flow, enabling caregivers and agents to assemble a complete picture of health history for informed decision making and continuity of care across treatment settings.
Support for Fiduciaries and Claims Administration
When a fiduciary, agent, or family member must manage health-related benefits, claims, or long-term care planning, comprehensive authorization reduces obstacles to obtaining necessary documentation. Broader access supports practical tasks like submitting insurance claims, applying for benefits, and gathering records for probate or guardianship matters. While such authorizations should be drafted with appropriate safeguards and revocation provisions, they can save significant time and prevent gaps in records that might otherwise complicate legal or financial proceedings tied to health status.
Benefits of Taking a Comprehensive Approach to HIPAA Authorization
A comprehensive HIPAA authorization reduces administrative burden and helps ensure timely access to medical information when agents, caregivers, or family members need to act on behalf of an individual. Broad permissions can prevent delays caused by repeated requests to multiple providers and minimize disputes over whether records can be shared. This approach is particularly valuable in emergency situations and long-term care planning, when speed and complete information are essential for accurate decision making and for protecting the health and legal interests of the person whose records are at issue.
Comprehensive authorizations also streamline communication between healthcare providers and those coordinating care, which can improve outcomes and reduce unnecessary back-and-forth over record requests. When combined with clear limits on purpose and duration, a broad authorization can balance convenience with control. Including revocation language and periodic review recommendations preserves the individual’s ability to change permissions as circumstances evolve, allowing the authorization to remain useful without permanently waiving all privacy protections.
Faster Access to Full Medical Records
When an agent or family member needs to gather comprehensive medical histories quickly, a broad HIPAA authorization reduces delays and administrative barriers. Full access to records from various providers means decisions can be informed by a complete view of the patient’s health history, medications, and recent treatments. This timeliness matters in emergencies and when preparing for transitions in care, as it helps avoid gaps that could compromise treatment plans, benefits processing, or legal decision making related to health matters.
Simplified Administrative and Legal Processes
A single comprehensive authorization can replace multiple narrow releases and reduce paperwork when records are required across different contexts, such as insurance claims, care coordination, and probate administration. This simplification saves time for both families and providers and helps align medical disclosures with other estate planning tasks. When the document is clearly drafted to define recipients, scope, and revocation methods, it minimizes confusion and makes administrative and legal processes more efficient while still preserving the individual’s ability to manage privacy preferences.
Practice Areas
Top Searched Keywords
- HIPAA authorization Millington TN
- medical records release Millington
- estate planning HIPAA release Tennessee
- Millington healthcare privacy authorization
- medical information release form Shelby County
- advance directives and HIPAA Millington
- access to medical records Tennessee
- HIPAA form for family members Millington
- Jay Johnson Law Firm HIPAA authorization
Practical Tips for Managing HIPAA Authorizations
Coordinate with Other Estate Documents
Make sure your HIPAA authorization is consistent with your durable power of attorney and advance directive to avoid conflicting instructions. Consistency across documents prevents confusion for providers and agents when they must act quickly. A coordinated approach that names the same agents, clarifies the scope of decisions, and aligns revocation terms reduces the chance that a provider will hesitate to release records. Regularly review these documents, especially after major life events, to confirm that designated recipients and effective dates still reflect your wishes.
Specify Scope and Duration Clearly
Keep Copies and Notify Providers
After signing a HIPAA authorization, provide copies to the named recipients and to your primary healthcare providers so they have the document on file. Notifying providers ahead of time can streamline future records requests and reduce delays during urgent situations. Keep a dated record of any revocations and deliver them to providers to ensure future disclosures stop when intended. Storing a secure copy with your estate planning documents and informing trusted contacts where to find it increases the likelihood that necessary information will be available when it is needed most.
Reasons to Include a HIPAA Authorization in Your Estate Plan
Including a HIPAA authorization in your estate plan ensures trusted people can obtain medical records and health information when decisions must be made on your behalf. This is particularly important if you become incapacitated, are hospitalized, or need long-term care; the authorization removes a common barrier to information flow between providers and decision makers. For families managing chronic conditions or complex care, pre-authorized access preserves continuity of treatment and supports claims and benefits administration tied to health status, streamlining interactions with medical and insurance systems.
A HIPAA authorization also reduces uncertainty for loved ones who may otherwise struggle to obtain records under federal privacy rules. By naming specific recipients and clarifying the scope and duration of disclosure, you protect your privacy preferences while granting necessary access. This planning step can prevent delays, minimize provider confusion, and reduce the administrative burden during stressful times. It is a straightforward way to preserve both confidentiality and practicality in the handling of sensitive health information over the course of care or during estate administration.
Common Situations When a HIPAA Authorization Is Needed
Typical scenarios calling for a HIPAA authorization include medical emergencies where family members need rapid access to records, ongoing care coordination among multiple providers, and administrative tasks like insurance claims or benefits applications that require documentation. It is also useful when a person becomes unable to communicate decisions and a named agent must gather medical histories. In probate and guardianship matters, authorized access to health records can clarify care needs and inform legal proceedings where medical facts are relevant to outcomes.
Hospitalization or Emergency Care
During an unexpected hospitalization, family members or agents often need immediate access to medical history and current treatment plans to make informed decisions. A signed HIPAA authorization allows providers to share this information quickly and directly with those you trust, reducing delays and improving the flow of critical details. Without such authorization, loved ones may face administrative hurdles or denials while attempting to obtain records, which can complicate decision making and coordination of care at a crucial moment.
Ongoing or Complex Medical Treatment
When multiple specialists, clinics, and hospitals are involved in care, it becomes essential to consolidate medical information for effective coordination. A HIPAA authorization facilitates information sharing among providers, caregivers, and agents working on a patient’s behalf. This access helps ensure that medication lists, prior test results, and treatment histories are available to everyone managing the person’s care, which can prevent medication conflicts, redundant testing, and gaps in follow-up that might otherwise occur.
Insurance Claims and Benefits Administration
Processing insurance claims, Social Security disability applications, and benefits requests often requires extensive medical documentation. A HIPAA authorization permits designated individuals to collect and submit records necessary for these processes, enabling timely claims and reducing the risk of denials due to missing information. Having authorized access minimizes delays in financial and benefits-related matters that rely on accurate and complete medical histories, which can be especially important for families managing care costs or applying for public programs.
Your Local Millington HIPAA Authorization Resource
Jay Johnson Law Firm serves Millington and Shelby County residents with practical estate planning that includes clear HIPAA authorizations. We help clients identify appropriate recipients, define the scope of permitted disclosures, and integrate the authorization with powers of attorney and advance directives to ensure a cohesive plan. Our approach emphasizes clarity and compliance with privacy regulations so that healthcare providers and designated recipients understand the scope and purpose of disclosures, improving access to records when timely information is necessary for care or administration.
Why Choose Jay Johnson Law Firm for HIPAA Authorizations
Choosing a local firm means working with attorneys familiar with Tennessee privacy practices and regional healthcare providers’ expectations. At Jay Johnson Law Firm we focus on drafting HIPAA authorizations that are practical and provider-friendly so that named recipients can obtain records when needed. We work with clients to balance privacy concerns and access needs, tailoring the document language for clarity and effectiveness across different medical settings in Millington and Shelby County.
Our process emphasizes careful review of who should be authorized, what information should be included, and how long permissions should last. We help families coordinate HIPAA authorizations with other estate planning tools to avoid conflicting instructions and to ensure seamless support for agents and caregivers. This coordination helps reduce delays in record requests and improves the likelihood that providers will accept and act on the authorization without excessive administrative barriers.
We also provide guidance on practical steps after signing, such as delivering copies to primary providers, advising named recipients on how to use the authorization, and documenting revocations when preferences change. Our client-focused approach helps people feel confident that their privacy and access preferences are documented clearly and that trusted individuals will be able to obtain the health information necessary for care coordination, claims processing, or legal matters when the time comes.
Get Started with a HIPAA Authorization in Millington
How We Handle HIPAA Authorizations at Jay Johnson Law Firm
Our process begins with a consultation to understand who should receive access and why, followed by drafting an authorization that aligns with your estate plan and Tennessee privacy requirements. We review the document to ensure the scope and duration match your intentions, provide guidance on signing formalities, and supply copies to relevant parties. We also recommend periodic reviews and updates to reflect changes in health, family structure, or provider networks, so the authorization remains effective when needed.
Step One: Initial Consultation and Needs Assessment
In the first step we discuss your healthcare preferences, family dynamics, and anticipated situations where records access may be required. This assessment covers which individuals or institutions should be authorized, what categories of information are necessary, and for how long the authorization should remain in effect. Collecting this information up front allows us to draft tailored language that reflects your intentions while remaining clear to providers and recipients when access to protected health information is requested.
Identifying Appropriate Recipients
We help clients identify who should receive access to medical records, factoring in family relationships, caregiver responsibilities, and agent roles under powers of attorney. Choosing recipients carefully prevents disputes and ensures that those who truly need information can obtain it. We also consider backup designees to address situations where the primary recipient is unavailable, and we discuss how granular or broad the permissions should be depending on privacy preferences and the anticipated use of the information.
Determining Scope and Duration
Determining the scope and duration of the authorization involves specifying which records will be released and whether the permission will expire on a date or after a particular event. We recommend clear language that outlines the categories of information covered, any provider limitations, and instructions for revocation. Defining these parameters reduces ambiguity and helps providers comply with disclosure requests while protecting matters you prefer to keep private.
Step Two: Drafting and Review of the Authorization
In the drafting phase we create a HIPAA authorization document that incorporates required elements and reflects your preferences. We prepare language that providers will recognize and accept, and we include revocation instructions and signature requirements. After drafting, we review the form with you to confirm accuracy and completeness and to make any adjustments needed to accommodate unique medical, family, or legal circumstances before finalizing the authorization for signature and distribution.
Provider-Friendly Language and Compliance
Using provider-friendly language helps avoid delays when records are requested. We ensure the authorization includes clear identification of covered records and named recipients, and we address any provider-specific requirements for signatures or witnesses. By aligning the document with common healthcare administrative expectations, we increase the likelihood that providers will honor the authorization promptly and without unnecessary procedural hurdles.
Client Review and Approval
Before finalizing the authorization we walk through the document with you to confirm that every detail reflects your intentions, from the scope of disclosure to expiration and revocation procedures. This review ensures you are comfortable with who will have access and how the document will be used, and it provides an opportunity to make changes if circumstances or preferences shift. Clear review and approval help prevent misunderstandings later when records are requested.
Step Three: Execution, Distribution, and Maintenance
After execution we recommend delivering copies of the signed authorization to primary healthcare providers and to the named recipients so the document is on file where it may be needed. We advise clients on safe storage of the original and on how to handle revocations when necessary. Periodic reviews and updates are suggested to keep the authorization current with changes in health status, providers, or family structure, ensuring that access remains aligned with evolving needs.
Providing Copies to Providers and Agents
Delivering copies of the authorization to hospitals, clinics, and primary care offices ahead of need helps streamline later requests for records. When copies are on file, providers can process requests more quickly and with fewer verification steps. We guide clients on which providers to notify and how to document delivery, which reduces delays during emergencies or transitions of care and improves the likelihood that necessary disclosures will be processed without undue administrative hurdles.
Updating and Revoking Authorizations as Needed
Life changes such as new providers, changed family relationships, or evolving care needs may necessitate updating or revoking a HIPAA authorization. We explain how to execute a revocation properly and how to replace documents to reflect new preferences. Advising clients on a regular review schedule ensures authorizations remain aligned with current wishes and continue to provide the intended access without inadvertently permitting unwanted disclosures.
Frequently Asked Questions About HIPAA Authorizations
What is a HIPAA authorization and why do I need one?
A HIPAA authorization is a written document that allows healthcare providers to disclose your protected health information to people or entities you name. It is typically used when family members, caregivers, or legal representatives need access to medical records for treatment coordination, insurance claims, or legal matters. Having this authorization in place removes a common obstacle to obtaining records and helps ensure that those acting on your behalf can gather the information they need in a timely and lawful manner.This document is especially important when you cannot communicate for yourself or when multiple providers are involved in care. By specifying who may receive information and what types of records are covered, the authorization balances access with privacy and makes interactions with providers smoother during urgent or complex situations.
How is a HIPAA authorization different from a power of attorney?
A HIPAA authorization specifically permits the release of protected health information, while a power of attorney appoints an agent to make decisions on your behalf, including health decisions if it is a medical power of attorney. Although related, they serve different functions: the authorization addresses privacy and records access, and a power of attorney addresses decision making authority. Having both documents aligned avoids gaps where an agent might have decision making power but no legal access to the records needed to act.Coordinating both documents ensures that agents can obtain the information required to exercise their authority effectively. We recommend reviewing both instruments together so they name the same people and have compatible terms about scope and duration, reducing confusion for providers and agents when action is required.
Who should I name on a HIPAA authorization?
Name people you trust to receive your medical information and who are likely to act responsibly with it. Common designees include a spouse, adult children, a close friend, or the person appointed as a power of attorney. It is also wise to designate alternates in case the primary designee is unavailable. Consider who interacts most with your healthcare team and who will be involved in caregiving or administrative tasks when making your selections.When choosing designees, consider their proximity to providers, availability during emergencies, and ability to manage sensitive information. Discuss your choice with the people you name so they understand their role and are prepared to act if necessary. Clear communication reduces stress during crises and helps ensure they will be ready to request records when needed.
Can I limit what records are disclosed under the authorization?
Yes, you can limit the authorization to particular types of records, specific providers, or a set timeframe. For instance, you might permit release of records related only to a single hospitalization, a particular condition, or care from a named specialist. Narrowing the scope protects privacy by preventing broader or unrelated disclosures while still allowing necessary access for a defined purpose.When limiting an authorization, be precise in your language to avoid misinterpretation by providers. If future needs change, you can execute a new authorization with broader scope or revoke the existing one. Periodic reviews of the authorization ensure it continues to reflect your preferences and medical circumstances.
How long does a HIPAA authorization remain valid?
A HIPAA authorization remains valid for the duration specified in the document, which can be a fixed date, an event, or an indefinite period until revoked. Specifying an expiration date helps maintain control over long-term access, while event-based expirations—such as the conclusion of a claim or the end of treatment—can be useful for temporary authorizations. If no termination is stated, state and provider practices may influence how long it is recognized.Because circumstances change, it is advisable to review authorizations periodically to confirm they still meet your needs. Updating or replacing the authorization when you change providers, designees, or care plans ensures continued alignment with your intentions and current medical realities.
How do I revoke a HIPAA authorization?
To revoke a HIPAA authorization, you should provide a written revocation notice to the healthcare providers and entities that hold the authorization. The revocation should clearly identify the original authorization and state that you withdraw permission for future disclosures. Delivering the revocation in writing to providers and any named recipients helps ensure they stop future releases of information under the prior authorization.Revocation does not undo disclosures made while the authorization was valid. After revocation, providers generally will no longer make new disclosures based on the revoked authorization, though they may require verification and a reasonable period to process the revocation. It is a good practice to confirm receipt of the revocation with providers to avoid inadvertent disclosures.
Will providers always accept my authorization form?
Providers will often accept a properly completed HIPAA authorization, but individual institutions may have specific form requirements or administrative procedures. Using language that follows recognized standards and including all required elements—such as patient identification, names of recipients, scope of records, purpose, and signatures—improves the likelihood that providers will honor the authorization. In some cases, providers request their own forms or additional verification before releasing records.We recommend providing copies of the authorization directly to the providers you expect will release records and asking about any institution-specific steps. This proactive approach reduces delays and clarifies expectations so that when records are requested, staff can process them efficiently and in accordance with both federal and provider-specific practices.
Should I give copies of the authorization to my doctors now?
Yes, giving copies of your signed authorization to your primary providers and to named recipients ahead of time helps ensure the document is on file when it is needed. Providers with the authorization on record can respond more quickly to requests for medical records and may require less verification during urgent situations. Providing copies also informs the recipients that they have permission and the scope of the records they may request.Maintaining a record of where copies were distributed and keeping a secure original with your estate planning documents is also helpful. Notify named designees about the authorization’s existence and location so they can act promptly without searching for documentation during a crisis or urgent medical need.
Can a HIPAA authorization help with insurance claims and benefits?
A HIPAA authorization can be very helpful for handling insurance claims, disability applications, and other benefits that require medical documentation. Authorized individuals can collect and submit the necessary records on behalf of the patient, which speeds processing and reduces the risk of incomplete submissions. Timely access to comprehensive medical histories and test results can be decisive in benefit determinations that rely on detailed treatment information.When preparing claims and benefits paperwork, it is important to ensure that the authorization covers the providers and types of records required by the insurer or agency. If a claim involves multiple providers, a comprehensive authorization or separate targeted releases can help gather all relevant documentation efficiently and accurately.
Do HIPAA authorizations help with probate or guardianship matters?
In probate or guardianship proceedings, medical records often play a role in demonstrating incapacity, care needs, or eligibility for benefits. A HIPAA authorization allows fiduciaries, agents, and legal representatives to obtain the medical documentation necessary for these legal processes. Having an authorization in place can speed evidence gathering and reduce delays in court proceedings or administrative matters where medical facts are relevant.Because court or probate processes sometimes require more extensive documentation, a broad authorization may be appropriate in those contexts. Aligning the authorization with other estate planning documents and discussing possible uses with your attorney helps ensure that records obtained will be admissible and useful for the intended legal purpose.