Under what circumstance can research gain access to patient records without authorization?

The correct answer is that research can gain access to patient records without authorization if the research institution signs a waiver. In certain situations, research activities may qualify for a waiver of authorization under HIPAA regulations. This can occur if the Institutional Review Board (IRB) or a privacy board determines that the research poses minimal risk to individuals' privacy and that the benefits of the research outweigh any potential harm. In this case, the research must also ensure that the data will be handled confidentially and that it will not identify any individual participants, thus justifying the waiver.

The other options do not align with HIPAA’s regulations regarding patient records. Explicit consent from a patient is always a fundamental requirement for accessing their health information unless a specific exception applies. The status of the patient being a minor does not inherently provide a basis for accessing records without authorization, as parental consent is typically necessary. Additionally, while research funded by a government agency might have specific implications for oversight or funding requirements, it does not independently grant access to patient records without consent or a waiver.