Tag: Privacy

Medical Data in the Internet “Cloud” – Data Privacy

Sep 27, 2009• 12

By ROBERT ROWLEY, MD

The concepts of “security” and “privacy” of medical information (Protected Health Information, or PHI) are closely intertwined. “Security,” as described in the second part of this series, has to do with breaking into medical data (either data at rest, or data in transit) and committing an act of theft. “Privacy,” on the other hand, has to do with permissions, and making sure that only the intended people can have access to PHI.

So, who actually “owns” the medical record? The legal status of medical records “ownership” is that they are the property of those who prepare them, rather than about whom they are concerned. These records are the medico-legal documentation of advice given. Such documentation, created by physicians about patients, is governed by doctor-patient confidentiality, and cannot be discovered by any outside party without consent. HIPAA Privacy Rules govern the steps needed to ensure that this level of confidentiality is protected against theft (security) and against unauthorized viewing (privacy). HIPAA-covered entities (medical professionals and hospitals) are held accountable for ensuring such confidentiality, and can be penalized for violation.

The question of privacy, then, revolves around sharing PHI between professionals in order to coordinate health care – after all, health care is delivered by networks (formal or informal), and data sharing is necessary to deliver best-practices levels of care. In the traditional world of paper charts, record-sharing is accomplished by obtaining consent from the patient (usually a signed document placed in the chart), and then faxing the appropriate pages from the chart to the intended recipient. Hopefully the recipient’s fax number is dialed correctly, since faxing to mistaken parties is a vulnerability for unintended privacy violation using this technology.

When medical data moves from a paper chart to a locally-installed EHR, the organization of medical data across the landscape is not really changed – each practice keeps its own database (the equivalent of its own paper chart rack), and imports/exports copies of clinical data to others according to patient permission (just like with traditional paper records). Such clinical data sharing is often done by printout-and-fax, or by export/import of Continuity of Care Documents (CCDs) if the EHR systems on each end support such functionality.

As technology evolves, new layers of medical data sharing emerge, which challenge the simple traditional “give permission and send a copy” method of ensuring privacy. Health Information Exchanges (HIEs) are emerging regionally and nationally, and are supported by the Office of the National Coordinator (ONC) for health IT. HIEs are intended to be data-exchange platforms between practitioners who might be using different EHR systems (that do not natively “talk” to each other). Only certain types of data are uploaded by an EHR into an HIE – patient demographic information, medication lists, allergies, immunization histories. HIEs, then, function as a sort of evolving “library” of protected health data, where local EHRs feed their data on a patient-permission-granted basis, and can download data (if granted the permission to do so) as needed. The potential impact on quality of care is dramatic.

In addition to being a “library” of shared data, HIEs can serve to assist in public health surveillance. This can range from CDC-based surveillance of the emergence or prevalence of specific diseases, to FDA-based post-market surveys of the use of new medications (and shortening the timeline for identifying problems should they arise). This sort of use of HIE data is de-identified, so that permissions around using PHI are not violated – patient-specific data in HIEs is only used with permission, and used for direct patient care (e.g. downloading into your own EHR your patient’s immunization history).

HIEs, however, are essentially a “bridge technology” that tries to connect a landscape where health data remains segregated into “data silos.” A newer frontier of technology can be seen arising from web-hosted, Internet “cloud”-based EHRs, such as Practice Fusion. In this setting, a single data structure serves all practices everywhere, and local user-permissions determine which subset of that data are delivered as a particular practice’s “charts.” This technology raises the potential to actually share a common chart among multiple non-affiliated practitioners – based upon one physician referring a patient to another for consultation (with the patient’s permission to make the referral), both practices are then allowed access to the shared chart, see each other’s chart notes, view the patient medications, review labs already done (reducing duplication of services), see what imaging has already been accomplished, securely message one another, and even create their own chart-note entries into the common, shared chart.

This “new frontier” of technology, where clinical chart sharing between practices (based on patient permission) occurs across all boundaries of care, makes the Practice Fusion vision an “EHR with a built-in HIE.” Extending this even further – shared EHRs and linkage with Personal Health Records (PHRs) – is beyond the scope of this particular article, and will be addressed subsequently. With good design, as pioneered here, the balance between ensuring security and privacy of PHI on the one hand, and permission-based sharing of clinical information for the betterment of overall health care delivery on the other hand, a truly remarkable technology is being built. The impact on transforming health care is profound.

Dr. Rowley is a family practice physician and Practice Fusion’s Chief Medical Officer. Dr. Rowley has a first-hand perspective on the technology needs and challenges faced by healthcare practitioners from his 30 year career in the sector, including experience as a Medical Director with Hill Physicians Medical Group and as a developer of the early EMR system Medical ChartWizard. His family practice in Hayward, CA has functioned without paper charts since 2002. You can find more of his writing at the Practice Fusion Blog, where this post first appeared.

If you liked this post you might be interested in these related posts:

Medical Data in the Internet “Cloud” (part 1) – Data Safety
Is “Cloud Computing” Right for Health IT?
Freenomics and Healthcare IT
Practice Fusion gets investment from Salesforce.com

September 27, 2009 in EHR/EMR, Privacy | Permalink

HIPAA’s Broken Promises

Sep 27, 2009• 19

By SUSANNAH FOX

If you hate HIPAA, it’s your lucky day. Paul Ohm is handing you ammunition in his article, “Broken Promises of Privacy: Responding to the Surprising Failure of Anonymization.” His argument: our current information privacy structure is a house built on sand.

“Computer scientists…have demonstrated they can often ‘reidentify’ or ‘deanonymize’ individuals hidden in anonymized data with astonishing ease.”

Ohm’s article describes HIPAA, in particular, as a fig leaf – or worse, as kudzu choking off the free flow of information.

“[I]t is hard to imagine another privacy problem with such starkly presented benefits and costs. On the one hand, when medical researchers can freely trade information, they can develop treatments to ease human suffering and save lives. On the other hand, our medical secrets are among the most sensitive we hold.”

KP lawsuit doesn’t sniff quite right

Aug 14, 2009• 10

By Matthew Holt

It’s about time we had a fun Kaiser Permanente scandal, as it’s been a while, and it appears that they’re having some influence on the side of the angels in DC these days. And tracking vis HISTalk apparently there is one. You can wonder over to this blog to get the full rhetoric but basically it comes down to KP being sued by a former relatively senior techie in the Northern California region who has had a big time falling out with his boss.He has three main accusations.

1. KP kept a registry of dementia patients on an open internal network2. KP employees were dumping personally identified data in the trash3. KP was and is not tracking deductibles and was forcing their members to count up to them—presumably costing their members money for those who were paying cash when they’d already met their deductible.

So let’s parse these apart.

The Red Flags Rule

May 19, 2009• 7

By JOHN HALAMKA

You may have seen the recent headlines “FTC delays Red Flags Rule
implementation until August 2009”. What is the Red Flags Rule and how
does it relate to healthcare?

The FTC has a great website that it explains it all in detail.

Basically,
the FTC requires most clinical offices, hospitals, and other health
care providers to develop a written program to spot the warning signs
of identity theft – “red flags” If a patient’s name on a photo ID and on their insurance card do not match, that’s a red flag. If a patient visited last week as John Smith but today is Fred Jones, that’s a red flag. If patient seems to travel from provider to provider seeking numerous expensive treatments, that’s a red flag.

The
law was initially designed to cover creditors and it seems odd for
healthcare providers to be considered creditors. The FTC defines a
creditor as anyone who enables the customer to carry a balance after
services are rendered. Unless a clinician asks for payment upfront (all
balances not covered by insurance), the clinician is a creditor.

Consumers Need All of the Facts in the Privacy Debate

Feb 26, 2009• 14

By David St. Clair

The economic stimulus package that President Obama has signed contains upwards of $20 billion to create electronic health records for most Americans within five years. The president has been very outspoken in his belief that EHRs are essential to health care reform and that the subsequent savings they’ll generate will help to strengthen the larger overall economy.

Whenever the subject of proliferating EHRs catches the national spotlight, you can bet that debates about privacy aren’t far behind. Indeed the privacy issue has already started to gain some traction in the media. In this video clip, CNN’s Campbell Brown and Elizabeth Cohen examine how easy it is for someone to obtain private medical information online by simply using someone’s Social Security number and date of birth.

While this assessment may be accurate, it’s a bit light on the fairness
scale. Brown and Cohen only make a very brief mention of facts like
President Obama’s plan to appoint a chief privacy officer and to
implement unprecedented privacy controls to safeguard the EHR
transformation. Instead they emphasize the more sensational angle
implying that electronic health information just isn’t safe. They also
seem to downplay the fact that a simple thing like creating a password
can protect one’s private information.

A new national privacy and security framework for HIT

Dec 16, 2008• 1

By BOB COFFIELD

The Office of the National Coordinator for Health Information Technology (ONCHIT) issued a paper Monday called The Nationwide Privacy and Security Framework for Electronic Exchange of Individually Identifiable Health Information. The summary states that the framework creates a set of consistent principles to:

“.
. .address the privacy and security challenges related to electronic
health information exchange through a network for all persons,
regardless of the legal framework that may apply to a particular
organization. The goal of this effort is to establish a policy
framework for electronic health information exchange that can help
guide the Nation’s adoption of health information technologies and help
improve the availability of health information and health care quality.
The principles have been designed to establish the roles of individuals
and the responsibilities of those who hold and exchange electronic
individually identifiable health information through a network.”

Along with the Nationwide Privacy and Security Framework the Department of Health and Human Services (HHS) has issued The Health IT Privacy and Security Toolkit. The Toolkit includes new HIPAA Privacy Rule guidance documents developed by the ONCHIT and the Office for Civil Rights (OCR) to help facilitate the electronic exchange of health information.

Make your voice heard!

Oct 28, 2008• 3

For the next week, you have a unique opportunity to make your voice heard on health information privacy issues, their impact on the Health 2.0 movement, and how best to build public trust in these technologies.

The National Academy of Public Administration (with funding from the Office of Management & Budget) is hosting a unique "national dialogue" on the intersection of health IT and privacy, which will take place on the Web beginning yesterday, October 27, and lasting through November 3.

They are seeking to gather feedback from the public on the important privacy issues that confront all of us as we promote the movement to e-health. A report will be generated based on the responses, so it is important that a broad range of stakeholders participate. Go to www.thenationaldialogue.org to find out more and to log on!

Hat tip to: The Health 2.0 social network

Google Health: Is It Good For You?

Oct 7, 2008• 4

By AMY TENDERICH

Note: Amy Tenderich, who writes and maintains the wonderful Diabetes Mine,
just did this very illuminating interview with Google Health’s Missy
Krassner. As you’ll see, she doesn’t slow-pitch to Missy. This is a
sure-footed, tough-minded exchange about the real issues that are on
the table now in Health 2.0. – Brian Klepper

Slowly but surely, using the Internet for your health needs is
becoming as mainstream as shopping on the web: no longer futuristic,
but is it for everyone? And perhaps more importantly, are mainstream
commercial health platforms from companies like Google and Microsoft
really useful for people with specific chronic illnesses? I thought it
would be interesting to hear their side of the story.

Missykrasner_3
So please welcome Missy Krasner, Product Marketing Manager for Google Health, whom I was lucky enough to catch up with for an interview last week.

Missy, shortly after Google Health launched last Spring, David Kibbe, former Director of Health IT for the AAFP, noted
that most of its services were “only mildly useful and sort of
‘toyish.’” How have these services evolved to be more useful to people
with health conditions?

Consumer genetic movement: Cease and desist? How about understand and resist!

Jul 2, 2008• 1

By Scott Shreeve

I have been following health care consumerism for several years now. Particularly, the “Direct Access” or “Direct To Consumer” laboratory testing market. While analytic lab testing has led out in this area, genetic testing has received all the regulatory attention, national press, and policy efforts (GINA).So it is no surprise that consumer genetic movement would be the first legal test of the Health 2.0 movement. As reported by Matthew Holt here on THCB, and a host of national outlets (Wired has had extensive coverage here, here, and here), there seems to be quite a hornets nest unleashed by our friends at the California and New York Departments of Health who are attempting to prevent consumers from accessing their own genetic information.

Thanks to some transparency efforts of the blogosphere, you can read the actual cease and desist letter written by Karen Nickels, the California Department of Pubic Health Chief of Laboratory Field Services. I actually know Karen Nickels personally. She has been a long time steward of ensuring regulatory exactness of all things laboratory within the State of California for 30+ years. She has a well deserved reputation as one tough cookie for the “precision” with which she carries out her dutiesUltimate Genetic Fighting – Which Genetic Variation Wins?