Abstract
This paper begins with a discussion of the value of privacy,especially for medical records in an age of advancing technology.I then examine three alternative approaches to protection ofmedical records: reliance on governmental guidelines, the useof corporate self-regulation, and my own third hybrid view onhow to maintain a presumption in favor of privacy with respectto medical information, safeguarding privacy as vigorously andcomprehensively as possible, without sacrificing the benefitsof new information technology in medicine. None of the threemodels I examine are unproblematic, yet it is crucial to weighthe strengths and weaknesses of these alternative approaches.