How should requests for medical records from non-patients be handled?

Requests for medical records from non-patients must be handled with a high degree of confidentiality and adherence to privacy laws, such as the Health Insurance Portability and Accountability Act (HIPAA) in the United States. Without patient consent, the release of medical records can violate the patient's right to privacy and confidentiality.

The requirement for patient consent ensures that individuals have control over who accesses their personal health information. This is important for maintaining trust in the healthcare system and protecting sensitive data from unauthorized access. Therefore, requests by non-patients should not be honored unless proper consent from the patient has been obtained, making this response the most appropriate for managing such requests.