Which action can be classified as a HIPAA violation?

Unauthorized access to patient records is classified as a HIPAA violation because it directly contravenes the confidentiality and privacy protections that HIPAA establishes. The law is designed to safeguard protected health information (PHI), ensuring that only authorized individuals have access to sensitive patient data. When someone accesses records without permission, it not only violates the patient's right to privacy but also breaches the trust essential for patient-provider relationships. This type of action undermines the core tenets of the HIPAA regulations, which emphasize the importance of safeguarding health information and respecting patients' rights.

The other actions listed fall within acceptable practices under HIPAA, provided they are conducted within the established guidelines and with appropriate consents where necessary.