Something to think about are the HIPAA laws that protect patient confidentiality to outside sources (even yourself & your business) that extend beyond the billing service of that particular medical facility/office.
Yeah, I would have to give some sort of consent form to do this. I`m coming up with several different solutions. The best thing is that I have a lot of marketing material and consent forms at my disposal. I`ll have to come up with something iron clad.
I have a few training CDs on HIPAA and have worked with it in the past. Liability issues if you don`t do it right.
Update: I am possibly getting a HIPAA compliant (256bit encryption) ASP to automate this. The functionality is meant to be a backend for certain service industries but I met with the owner of the company and he said he can modify some of it to my purposes.
need to brainstorm and get everything together though.