May 20, 2015 10:16 AM
Posted by: adelvecchio
Health Data Consortium
, Health Datapalooza
, Patient data
, patient-generated data
Guest post by Chris Boone, Chief Executive Officer, Health Data Consortium
As the age of big health data emerges, a new category of data that can be leveraged by physicians and caregivers to discover more about their patients has arisen: patient-generated health data. While self-tracking — and the quantified self movement — is not a new phenomenon, the creation of technologies that can collect, store and analyze this data has given the movement new traction and momentum. With no one more interested in a successful health outcome than an individual with their own, patient-generated health data can provide clinicians a rich new vein of data to inform their decision-making.
A webinar hosted earlier this year entitled “Patient Generated Health Data: An Overview” brought together patient-advocate Scott Strange of Strangely Diabetic, Danny Sands, M.D., assistant professor at Harvard Medical School, Mandi Bishop, health plan analytics innovation practice lead for Dell, and Greg Meyer, director and distinguished engineer at Cerner Corp. They discussed the potential of leveraging patient-generated health data and data trends to improve and deliver integrated patient care, and what challenges lie ahead in achieving the reality of a comprehensive, person-centered view of an individual’s health.
This highly successful discussion will be continued at the session “Patient-Generated Health Data in the Real World” at Health Datapalooza 2015 with the same panelists and health cost transparency advocate Casey Quinlan as moderator. Other sessions that will discuss similar topics include “Leveraging the Potential of Patient-Generated Data: Progress and Opportunities,” to be moderated by Alison Rein, senior director for evidence generation and translation for AcademyHealth. “But What if I Want to Share? Contributing Your Own Data to Foster Public Good,” will be moderated by Niall Brennan, chief data officer for the Centers for Medicare and Medicaid Services. Another related session will be “Engaging Patients in Generating and Using Big Data,” along with many more.
Perhaps just as interesting as those sessions will be the ideas and collaborations generated from discussions between attendees about how to create integrated care through patient-generated health data. This year’s Health Datapalooza will continue to provide a forum for high-level cross-sector conversations between patients, providers, innovators and entrepreneurs, government, academics, and healthcare technologists.
To be a part of the conversation that will direct the potential of health data towards targeted and personalized healthcare, join us at Health Datapalooza from May 31-June 3 in Washington, D.C.
About the author:
Chris Boone is Chief Executive Officer of Health Data Consortium. He is a recognized expert in health systems, health informatics, health IT policy, and the use of electronic clinical data to generate clinical and scientific evidence for public policy, quality improvement, and patient-centered outcomes research efforts.
Prior to Health Data Consortium, Chris was a Vice President in Avalere Health’s Evidence Translation and Implementation practice, where he focused on developing evidence generation strategies for professional medical societies, consumer advocacy groups, and life sciences companies.
Chris holds a bachelor’s degree in Management Information Systems, a master’s degree in Healthcare Administration, and a doctorate in Public Affairs and Health Policy. Chris is also a fellow of the American College of Healthcare Executives (FACHE).
May 5, 2015 1:56 PM
Posted by: adelvecchio
, data privacy and security
, Health Data Consortium
, Health Datapalooza
Guest post by Chris Boone, Executive Director, Health Data Consortium
At the end of 2014, two reports that revealed conflicting consumer opinions about sharing health data and data security were released. Forbes, with data compiled by PwC’s Health Research Institute, reported that 70% of consumers were concerned about health data stored or accessed on their phones, and as many as 78% were concerned about the general state of medical data security.
In contrast, an NPR-Truven Health Analytics poll showed the opposite, with only 10% of respondents reporting that they worried about their employers having access to their health data, with 11% concerned with their doctors being able to view their records. Additionally, 14% were uneasy with hospitals having access to their data and 16% felt the same way about insurers.
Two major polls returning starkly contrasted findings within such a short time span is jarring, to say the least. The difference in results may simply be attributed to the two polls asking different questions but framing the conclusions in the same context. However, it’s just as likely that the reports highlight the ambivalent nature of consumers’ beliefs about health data privacy and sharing their health data for the greater good of public health.
In addition, as part of Health Datapalooza’s workshops, attendees will be able to participate in a “Privacy and Security Bootcamp” which will offer participants an opportunity to learn more about navigating the waters of federal privacy and security laws. This year’s Health Datapalooza will provide a forum for high-level, cross-sector conversations between patients, providers, innovators, entrepreneurs, government representatives, academics and healthcare technologists.
To be part of a conversation about shaping the future of secure, patient-centered health data access and sharing, join us at Health Datapalooza from May 31-June 3 in Washington, D.C.
About the author:
Chris Boone is Executive Director of Health Data Consortium. He is a recognized expert in health systems, health informatics, health IT policy, and the use of electronic clinical data to generate clinical and scientific evidence for public policy, quality improvement, and patient-centered outcomes research efforts.
Chris holds a bachelor’s degree in management information systems, a master’s degree in healthcare administration, and a doctorate in public affairs and health policy. Chris is also a fellow of the American College of Healthcare Executives.
March 12, 2015 12:18 PM
Posted by: adelvecchio
, hybrid cloud
, Private cloud
, Public cloud
Guest post by Roberta Katz, director, healthcare solutions, EMC, @Roberta_Katz, @EMCHealthcare
Increasing at a rate of 48% per year, healthcare data is one of the fastest-growing segments within the digital universe. The growth rate of healthcare data eclipses the 40% figure representative of the overall digital universe. This mass of new healthcare data is produced by a multitude of different sources including, clinical applications, compliance requirements, genomic sequencing — and future care-enabling technologies for cloud, big data, mobile, and social.
Health IT leaders are working toward a future where data driven healthcare will help provide precision medicine to improve health, treat diseases and avoid unnecessary healthcare costs. Also, patients will see improved outcomes because of better information sharing throughout the continuum of care. This means data will move more easily between physicians, hospitals, pharmacies, nursing homes, rehabilitation facilities and home health caregivers.
To reach these goals, health IT leaders are working on optimizing their EHR systems and determining how to best harness emerging technologies like cloud, big data, mobile and social media to store, protect, analyze and leverage healthcare data in a meaningful way. Most healthcare IT professionals feel their IT infrastructure is not fully prepared for what’s coming next, according to a recent MeriTalk survey. The questions is: what can they do to improve?
Goal: future ready
As healthcare providers work to leverage real-time data at the point of care, redefining their infrastructure to be “future ready” is becoming critical. The deployment of cloud models offers a path forward, enabling healthcare providers to deliver agile, next generation health IT to gain clinical and business efficiencies.
In 2015, 62% of health IT leaders planned to increase cloud budgets to help provide more coordinated, cost-effective care. Providers are starting to make the journey to an enterprise hybrid cloud as they balance clinical and business workloads with both private and public cloud resources.
Does public + private = hybrid?
Why all this focus on a hybrid cloud? The objective of an enterprise hybrid cloud is to deliver the same experience, capabilities and performance — regardless of how and where workloads are placed in the cloud — whether it be private, managed private or public. Another goal is to find a way to integrate traditional and next-generation clinical and business applications. To accomplish this, a software-defined approach is needed to change the way IT services are integrated and delivered to the care community.
A healthcare hybrid cloud environment is more than an infrastructure that includes public and private clouds. A hybrid cloud enables infrastructure transformation, application transformation and operating model transformation. It incorporates trusted, public clouds for access to a wide array of applications and services such as email and backup as a service. It includes private clouds for the reliable performance and security of critical clinical applications such as EHR systems and PACS. In other words, implementing a hybrid cloud framework helps healthcare organizations integrate multiple, disparate cloud environments and securely deliver the right data to the right caregiver at the right time.
As healthcare organizations position themselves to become future ready, there are even more reasons to deploy a hybrid cloud. With an enterprise hybrid cloud model, health IT becomes the broker of trusted IT services, the internal service provider of choice — balancing business and clinical workloads with private and public cloud resources, lowering IT costs, providing service catalogs and meeting service-level agreements (SLAs).
It’s not a destination, it’s a journey
As many as 18% of healthcare providers say they run EHR applications partially or fully in a hybrid cloud today. This figure means there is room for growth ahead. How can health IT get there?
For healthcare IT teams who are at the initial stages of investigating cloud models, the first steps should be to:
• Establish cloud roadmap priorities
• Execute a benchmarking assessment to review current IT capabilities
• Identify pain points, infrastructure automation, and any gaps for infrastructure, applications, and operating model for your ITaaS strategy
For healthcare IT teams with an understanding of their cloud-ready workloads, the following actions should be their next steps.
• Identify migration priorities
• Create a catalog of IT services across your network
• Build a charge-back process for IT service billing and financial transparency
• Establish an IT governance process
• Establish SLAs
• Quantify dollars saved or re-allocated to meet priorities; Review quarterly
According to a MeriTalk study, heathcare IT leaders believe cloud solutions will impact clinical and business workloads in the next two years by improving real-time data access, reducing cost of care, improving overall operations, reducing medical errors and improving insurance claims tracking.
Taken together, this progress means there will be more opportunities to focus on real innovation targeted at improving patient care outcomes.
About the author:
Roberta Katz is director of healthcare solutions at EMC where she focuses on helping healthcare organizations move forward their IT strategies and solutions for EMR optimization, healthcare hybrid cloud, patient data intelligence, and advanced medical imaging. Roberta has more than 25 years of health IT industry expertise in developing solutions to help improve patient care delivery, at the point of care, leveraging IT technologies.
March 4, 2015 2:17 PM
Posted by: adelvecchio
, data visualization
, Quality improvement
Guest post by Zach Watson, content manager, TechnologyAdvice
For large healthcare organizations, aggregating and analyzing data isn’t sufficient to improve business and care performance. Accountable care organizations, patient-centered medical homes, and other new models of care delivery require cross functional teams and greater integration of healthcare services. Any findings discovered by healthcare data analysts must be packaged in a consumable fashion for a range of audiences.
This enables the data to be more easily processed and used across departments. Luckily, the barrier to entry for using business intelligence or data visualization is lower than ever before. Some medical software suites now include basic data visualization capabilities. This makes it easier for executives to partner with analysts and produce effective data visualizations that convey clinical insight.
It makes sense to use data visualizations when possible because humans process information more easily when it’s presented with a strong visual element. Rows and columns of numbers may entice an analyst, but for the majority of their audience, such a presentation requires a heavy amount of explanation.
The most insightful reports often contain complex data sets that have been sliced and diced from multiple perspectives to arrive at an actionable conclusion. These reports usually present a mixture of regulatory, financial, and clinical data, making user-friendly visualization even more important.
As business intelligence has become more widespread, templates have emerged for common healthcare data visualizations. As a side note, these visualizations require the implementation of an enterprise data warehouse to normalize and order the data — which should be standard practice for large healthcare organizations using data at this scale. Let’s look at a few of the most useful visualizations for healthcare organizations.
Payer reimbursement mix
In order to effectively keep pace with the regulatory and reimbursement changes happening throughout the healthcare system, providers should record and analyze reimbursement trends on a per payer basis — with a particular focus on payers that make up a large percentage of a provider’s overall revenue.
A payer mix visualization displays the names of a hospital’s top payers in descending order with the percentage of total reimbursement each payer represents to the provider. In a complementary column, displaying the yearly payments for each payer helps executives quickly analyze broad reimbursement trends.
If providers have the capabilities to break down data by facility or location, then it’s possible to create a dashboard that can highlight differences in regional reimbursement rates. This type of payer mix has its benefits, but adding gains and losses data will maximize this visualization’s usefulness. This can be accomplished with a column of deviation charts that correspond to each payer on an annual basis.
A yearly visualization allows executives to view and share information about annual gains and losses on a per payer basis. Again, adding an interactive element for sorting historical data can increase the dashboard’s utility. Other options for data segmentation include distinct outpatient or inpatient views.
Analyzing historical and current payer trends and matching them with gains and losses allows providers to more easily identify which procedures, facilities, and patient populations cause the largest drain on resources.
Quality improvement initiatives
Once a provider’s leadership team has a better understanding of reimbursement movement in the payer arena, they can focus on improving their internal processes to achieve the three main goals of healthcare: lower costs, better patient outcomes and improved patient experiences.
These types of quality improvement initiatives require significant data analysis, with best of breed systems combining clinical, cost, billing, and ICD-9 or ICD-10 codes to sort and rank clinical processes. Once the data is structured and presented in graphical form, it’s best practice to look for significant variations in cost, which usually represent large variations in care quality.
Presenting this data as a bubble chart helps organizations identify the processes with the highest degree of variation compared to the number of times those processes occur. This type of visualization makes it easier to identify cross-departmental areas for improvement that will affect outcomes and resource use.
A number of other visualizations are quickly becoming commonplace in healthcare. Heat maps are a great method for presenting trends on patient populations at a geographic level, but these visualizations require data from each county in each state, placing them out of reach for all but the largest healthcare organizations.
Data analytics is quickly becoming embedded in the operating and decision making processes of healthcare organizations. Once the analysis is complete, it’s vital that executives supply stakeholders throughout their organization with a way to intuitively understand the conclusions that have been uncovered. Better data visualizations regarding payer reimbursements and quality improvements are becoming two common areas for analysis that can help organizations convey actionable findings.
About the author:
Zach Watson is the content manager at TechnologyAdvice. He covers healthcare IT, business intelligence, and other emerging technology. Connect with him on LinkedIn.
December 29, 2014 11:06 AM
Posted by: adelvecchio
SearchHealthIT has compiled a list of healthcare IT events for the upcoming year.
Know of an event that’s not included below? Suggest it in a comment and we’ll add it to the list!
The Digital Health Summit (at 2015 International CES)
January 6 – 9 * Las Vegas, NV
Health 2.0 WinterTech
January 15 * San Francisco, CA
HL7 International – Working Group Meeting
January 18-23 * San Antonio, TX
iHT2 Health IT Summit in San Diego
January 20-21 * San Diego, CA
January 23 * Tampa, FL
IHE North America Connectathon 2015
January 26 – 30 * Cleveland, OH
ONC Annual Conference
February 2 – 3 * Washington, D.C.
eHealth Initiative Annual Conference
February 3–5 * Washington, D.C.
iHT2 Health IT Summit in Miami
February 10-11 * Miami, FL
Managed Care Compliance Conference
February 15–18 * Las Vegas, NV
Audit & Compliance Committee Conference
February 24–25 * Scottsdale, AZ
February 27 * New York, NY
Mobile World Congress 2015
March 2–5 * Barcelona
iHT2 Health IT Summit in San Francisco
March 3-4 * San Francisco, CA
The CIO Healthcare Summit
March 15-17 * Chicago, IL
National Quality Forum Annual Conference
March 23 – 24 * Washington, D.C.
2015 State Healthcare IT Connect Summit
March 23-24 * Baltimore, MD
April 1-2 * Boston, MA
HIMSS15 Conference and Exhibition
April 12–16 * Chicago, IL
Annual Compliance Institute
April 19-22 * Lake Buena Vista, FL
Bio-IT World Conference & Expo
April 21-23 * Boston, MA
SAS Global Forum
April 26-29 * Dallas, TX
ATA 20th Annual International Meeting & Expo
May 3-5 * Los Angeles, CA
Medical Informatics World Conference
May 4-5 * Boston, MA
May 7 * Houston, TX
National Health Insurance Exchange Summit
May 11-13 * Washington D.C.
WEDI National Conference
May 18-21 * Scottsdale, AZ
iHT2 Health IT Summit in Boston
May 19-20 * Boston, MA
MIT Sloan CIO Symposium on Health IT
May 20 * Cambridge, MA
iHealth 2015 Conference
May 28-29 * Boston, MA
May 28-30 * Washington D.C.
May 31- June 3 * Washington D.C.
Research Compliance Conference
May 31- June 3 * Austin, TX
e-Health Canada 2015
May 31- June 3 * Toronto, ON, Canada
2015 Health Privacy Summit
June 3-4 * Washington D.C.
NYHIMA’s 2015 Annual Conference
June 7-10 * Syracuse, NY
June 10 * Santa Monica, CA
National Healthcare Innovation Summit
June 15-17 * Chicago, IL
DIA 2015: 51st Annual Meeting
June 14-18 * Washington, D.C.
HealthTECH Council Meeting and Summit
June 28-30 * Location TBA
iHT2 Health IT Summit in Denver
July 21-22 * Denver, CO
mHealth + Telehealth World
July 21-23 * Boston, MA
iHT2 Health IT Summit in Seattle
August 18-19 * Seattle, WA
September 17, * Chicago, IL
AHIMA Convention & Exhibit
September 26-30 * New Orleans, LA
iHT2 Health IT Summit in New York City
September 29-30 * New York City, NY
Health 2.0 Annual Fall Conference
October 4-7, * Santa Clara, CA
National Health IT Week
October 5-9, * Nationwide
iHT2 Health IT Summit in Chicago
October 6-7 * Chicago, IL
Partners HealthCare’s Connected Health Symposium
October 29-30 * Boston, MA
Digital Healthcare Innovation Summit
November 3, * Boston, MA
AMIA 2015 Annual Symposium
November 14-18, * San Francisco, CA
iHT2 Health IT Summit in Atlanta
December 2-3 * Atlanta, GA
December 16, 2014 11:51 AM
Posted by: adelvecchio
, EHR Adoption
, EHR selection
, EHR vendors
Guest post by Charles Settles, content writer, TechnologyAdvice
Poorly-designed workflows, charting, and other aspects of the user interface are common user frustrations with medical software. There are many causes for this, but one is likely the lack of physicians working in EHR design. Of the hundreds of healthcare IT vendors, few are led by physicians.
Software developers are typically, often by necessity, bound by logic in both the literal and figurative sense. Meanwhile, medicine has its own logic — and the two don’t always coincide. Merging the desires of physicians and other users with the capabilities of developers means reconciling what’s possible with what’s practical. It takes a special kind of pragmatism for software vendors to do it properly, and it usually requires a physician at the helm, or at least one or more directly involved in the development and design processes. But does physician involvement in software design result in greater user satisfaction?
In our research at TechnologyAdvice, we’ve spoken with numerous physicians, patients, and vendors. An upcoming TechnologyAdvice research project will look at healthcare IT vendors that heavily involve physicians in leadership, design and development. The following five vendors, listed in no particular order, are a few notable examples.
One Touch EMR
One Touch EMR, founded by internal medicine physician Robert Abbate, describes their software as designed “by doctors for doctors.” In a message from Abbate on the company’s website, he cites his previous experience with Web hosting and development as a major factor in the birth of One Touch EMR. Following his residency, Abbate wasn’t happy with any of the options available for his new practice. As a result, he decided to build his own. One Touch EMR is now fully certified as a complete ambulatory solution for both stages of the meaningful use program, and has an intuitive, tablet-based interface. It is Web delivered, works on Android and iOS, and features custom templates, macros, forms, integrations, and migrations from other systems, available at an additional cost. One Touch also offers a pre-integrated practice management solution and supports popular billing and voice recognition software out of the box. It supports a wide range of medical specialties.
Kareo, Inc., founded in 2004, employs physicians, including Chief Medical Information Officer Tom Giannuli. Giannuli previously held the same position at healthcare IT firm Epocrates, Inc. Kareo’s free EHR has consistently received above average marks in user satisfaction. The company’s paid practice management product has also been well received. Suitable for nearly any specialty, more than 25,000 providers use Kareo’s software or billing services and many would recommend it to their colleagues. Kareo supports a number of input interfaces, including intuitive touch and voice commands, and its customer support is an oft-cited added benefit. It is also a certified complete ambulatory EHR and ready for both stages of meaningful use attestation.
Practice Fusion Inc., founded in 2005, is one of the largest providers of cloud-based medical software in the United States. Seven medical doctors are members of company leadership or serve in an advisory capacity. These doctors’ backgrounds include everything from practicing internists, to professors of surgery and anesthesiology, to former presidents, medical directors, and administrators at hospitals and other care organizations. Like Kareo, Practice Fusion’s health records system is free, but their practice management product is not. Unlike Kareo, Practice Fusion does not provide billing services.
Modernizing Medicine, Inc. developed its main Electronic Medical Assistant specifically for surgeons. The company also provides support for a wide variety of other common specialties, including: dermatology, ophthalmology, plastics, orthopedics, otolaryngology, and gastroenterology. More than 17 physicians are on staff at Modernizing Medicine, including co-founder and practicing dermatologist, Michael Sherling. Like the other systems profiled, Electronic Medical Assistant is a certified, stage 2-ready product. The program is tablet-based and delivered via the cloud. Due to its targeted nature, the company has seen rapid user growth over the past few years.
Founded in 1996, e-MDs, Inc. was created by David Winn for his own medical practice. Called the “father of EMR” on the company’s website, Winn has led e-MDs’ development of software, including a new ICD-10 coding product. The medical records system is offered alongside an integrated practice management product, and can serve providers in over twenty specialties. The modular system is certified for both stages of meaningful use and supports several third-party software offerings. It includes features such as voice recognition, e-prescribing and more.
These are just a handful of the physician-driven healthcare IT vendors that we’ve uncovered thus far. Consistent themes seen in the marketing materials of each of these providers are their high usability and user satisfaction ratings. A cursory glance at the latest ratings from unbiased research organization KLAS Enterprises LLC appears to confirm many of these vendors’ claims. For physicians looking to implement new medical software, searching for a physician-led vendor may be a pragmatic move.
Charles Settles is a content writer at TechnologyAdvice. He frequently covers topics related to health IT, gamification, and other emerging tech trends. Connect with Charles via Google+
December 3, 2014 1:31 PM
Posted by: adelvecchio
, fax technology
, HIPAA compliance
Guest post by Yvonne Li, co-founder of SurMD
As most healthcare practitioners and administrators know all too well, the use of fax machines is deeply engrained in the day-to-day information workflow across the healthcare system. In fact, the 2012 National Physicians Survey reported that the fax machine, based on decades-old technology, was a dominant method by which doctors communicate with colleagues, patients, insurance companies and pharmacists.
Using paper-based fax machines to transmit protected health information (PHI), and other sensitive data, can present serious security risks for healthcare providers and their patients. Faxing documents to the wrong number, having a fax machine located in a non-secure area, or theft of a fax machine hard drive are just some of the scenarios that have resulted in security breaches.
In addition to security concerns, traditional fax machines can be inefficient and unreliable. With the increase in EHR adoption, many practices are hiring extra employees just to receive and enter fax data into the EHR system. While the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 seeks to close both security and inefficiency gaps, among other ambitious goals, healthcare still has a long way to go before it can ditch the fax machine.
Given the long road ahead, one has to wonder if the fax machine will ever entirely disappear from healthcare. The short answer is yes.
To shed some light on this issue, let’s take a closer look at fax use in healthcare, why it continues to endure, and how Internet fax can help organizations evolve beyond traditional fax machines that still permeate the healthcare ecosystem.
Fax technology — then and now
Fax, short for facsimile, involves the transmission of scanned printed material over phone lines, typically to a telephone number connected to a printer or other device. Although fax reliance peaked in the 1980s, which is also when it took off in healthcare offices, its invention dates all the way back to 1843.
Yes, that machine you are using to transmit vital health information came to being in the mid-nineteenth century! Though to be fair, fax technology has evolved considerably since those early days, and continues to be modernized and reframed by digital technology and the Internet.
Today, healthcare professionals use fax to transmit radiology and pathology reports, prescriptions, doctor’s notes, insurance claims and billing information, just to name a few. Internet fax technology can even integrate with EHR systems now and form an avenue through which patient data can be sent to other physicians and patients, although these capabilities have yet to be widely implemented.
Old habits die hard
In talking to physicians and technology experts from a number of physicians’ offices, many of them don’t have the time or resources to redesign their information workflow and eliminate their use of the fax. It is so deeply engrained across the entire health system that wholesale changes would need to occur before fax usage can be significantly minimized or eradicated. For example, fax senders cannot yet eliminate faxing because the recipient may request fax-only delivery.
That’s not to say healthcare professionals are enamored with these machines. Although there may be a comfort level associated with their use, many of the typical complaints that plague fax machine dependence in other industries also surface in healthcare environments. These gripes range from unreliable transmissions that need constant verification, to unwieldy reams of paper in which important data commonly gets lost among less valuable information.
Fax use and HIPAA
Despite its dated roots, and the myriad complaints, fax machines can be HIPAA-compliant as long as appropriate security safeguards are followed. In short, HIPAA regulations do not prevent covered entities (health providers, plans and clearinghouses that transmit health information electronically) from faxing PHI.
It’s the covered entity’s responsibility to ensure their fax practices comply with HIPAA privacy rules. These include the “minimum necessary” rule, which limits information in the fax to the minimum amount necessary in certain instances, as well as the implementation of administrative, technical, and physical security policies to protect PHI.
Unfortunately, these rules are not always followed. In a recent blog post, academic physician Sachin H. Jain, M.D commented that fax machines sit open and accessible to a wide range of individuals in most healthcare settings–suspending any expectation of privacy and security.
For obvious reasons, fax machines must be located in secure, non-public areas to prevent unauthorized personnel from viewing faxes. Office staff should always verify the recipient’s fax number and use a cover sheet that does not include PHI.
Sending a fax to the wrong number is one of the most common errors, as evidenced by a number of reported breaches. Last year, Oakland, Calif.-based West Coast Children’s Clinic had to notify patients of a HIPAA breach after it faxed a patient’s PHI to an incorrect fax number. The data included the patient’s name, date of birth, developmental and psychological treatment history, family history, educational history, testing results and prescribed treatment.
What are the lessons to be learned? Make sure security safeguards are in place when using the fax machine to transmit PHI, and confirm your staff is properly trained to whenever handling and transmitting patient information.
The move to Internet fax
Internet fax, which uses Internet Protocol rather than phone networks and replaces paper with digital transmissions, has emerged as a popular alternative to the traditional fax. Internet fax is typically provided as a hosted service, whereby health providers can subscribe to a third-party entity that converts emails and other content to faxes.
Typically no human interaction occurs, thereby eliminating forgotten, lost or misused faxes that might be lying around. This change in workflow reduces risk and offers added convenience and efficiency over traditional fax machines. For healthcare providers that aren’t ready to eliminate fax altogether, moving to secure Internet fax can be a valuable step toward mitigating the inefficiencies and security risks posed by traditional fax machines.
To comply with HIPAA privacy rules, the Internet fax service provider has to follow security measures and other factors pursuant to HIPAA regulations. Electronic PHI data, for example, needs to be encrypted during transport as well as when it is being stored.
The Internet fax service provider also needs to sign a business associate agreement, which authorizes them to become a business associate and create, receive, maintain or transmit electronic PHI on the covered entity’s behalf. Most agreements also hold fax service providers accountable to safeguard PHI–sharing the responsibility with the health provider.
Go beyond fax — look to the cloud
In addition to Internet fax capabilities, some healthcare data management products offer additional capabilities including cloud-based storage, retrieval and other forms of secure file transfer. Cloud-based solutions make data management and recovery far easier than on-site servers, enabling practices to scale as data volume grows –a key consideration as EHR adoption climbs.
Practices can leverage integrated data storage, retrieval and file transfer solutions to securely store, backup and instantly retrieve data whenever it is needed, while also choosing their method of transmitting files. With SurMD’s SurLink, users can send documents, medical images and other files either through a secure link with an email notification or through a fax number. The user receives notification after the file transmits successfully, with a log of all transmission activity automatically updated for tracking purposes. With digital fax, all activity can be tracked which adds the benefit of accountability.
If you are considering a cloud-based data management product, be sure to look for a HIPAA-compliant vendor and ask how to encrypt patient data. Despite its importance, encryption remains a sore spot for health providers. Data should always be encrypted both when it is being stored, as well as when it is being transferred from provider to patient and from provider to provider.
Healthcare still has a long way to go before it stops using the fax machine. Eventually, the sun will set on this relic of the past, and it will go the way of the dinosaur. Until then, healthcare organizations can deploy integrated data management products with Internet fax to migrate from paper to digital fax. This move will provide added efficiencies and security protections when transferring sensitive patient information.
About the Author: Yvonne Li is a technologist and business development executive. She is an expert in cloud storage, healthcare data exchange, Internet business models, SaaS and content engagement platform design. She is the co-founder of SurMD, a cloud storage technology company and has launched a line of HIPAA- compliant cloud services. Li currently serves as VP of Business Development, at SurMD, and can be followed on Twitter at @mySurMD.
 “Frequently Asked Questions about HIPAA,” American Medical Association (Sept. 2013).
 Jain, “A Health Care Resolution for 2014: Let’s Retire the Fax Machine,” Forbes.com (April 12, 2014).
November 13, 2014 3:00 PM
Posted by: adelvecchio
Internet of Things
, Patient engagement
, patient privacy
, Privacy and security
Guest post by Roberta Katz, director, healthcare solutions, EMC, @Roberta_Katz, @EMCHealthcare
Based on the amount of data currently being produced, the digital universe is projected to double in size every two years and multiply tenfold between 2013 and 2020 — from 4.4 trillion gigabytes to 44 trillion gigabytes. A recent IDC study, “The Digital Universe of Opportunities: Rich Data and the Increasing Value of the Internet of Things,” revealed how the emergence of wireless technologies, smart products, and software-defined businesses will play a central role in expanding the volume of data.
At a 48% percent annual growth rate, the healthcare “digital galaxy” is growing even faster than the overall “digital universe.” In fact, more healthcare data is being generated than ever before, coming from cloud, big data, mobile, social media and electronic medical record sources. Healthcare providers need to be able to harness the useful, high value data produced during a patient care episode to gain insight into their patients’ conditions. This is particularly important as the population — with its higher rate of chronic diseases — continues to age, and advanced tools such as medical imaging, tracking devices, and sensors are used to remotely monitor patient physiological measures.
Because privacy and security of patient information is so critical at the point of care, trust between patients and providers is integral as it intersects across IT, patient engagement, and safer patient care delivery. Along with other industries, healthcare providers are working to balance security and privacy while they more efficiently manage, analyze, and share patient data for coordinated care.
To gain further understanding of these issues, The 2014 EMC Privacy Index surveyed 15,000 people in 15 countries to measure the relationship between online privacy and convenience. The U.S. ranks tenth among these 15 countries in its willingness to sacrifice privacy in return for greater convenience online, with 40% of Americans ready to give up some privacy for greater convenience.
The privacy irony
The Privacy Index illustrates the complexity of the privacy debate, providing three examples of how respondents are conflicted when it comes to choosing privacy or convenience.
- We want it all paradox: Consumers say they want all conveniences and benefits of digital technology, yet say they are unwilling to sacrifice privacy to get them.
- Take no action paradox: Although privacy risks directly impact many consumers, most say they take virtually no special action to protect their privacy — instead placing the responsibility on those handling their information such as government, healthcare organizations, and businesses
- Social sharing paradox: Users of social media sites claim they value privacy, yet they say they freely share large quantities of personal data — despite expressing a lack of confidence and trust in those institutions to protect their information.
These same conflicts are present in healthcare.
- We want it all paradox: A patient may like the convenience of telehealth, but may not always be open to allowing access to these services on their personal or home devices.
- Take no action paradox: Some patients endanger the privacy of their sensitive health information by using the same password for multiple sites and accounts, and sometimes leave important medical records out in the open.
- Social sharing paradox: How often has a patient shared a personal diagnosis or hospital experience on a social media site?
The Privacy Index dives even deeper into the healthcare privacy debate.
People value easier access to their medical records, but only 47% are willing to give up confidentiality. Patients see the value and benefits of technology and may be more open in a healthcare setting, but they remain hesitant.
What’s contributing to this reluctance? A MeriTalk report, “Rx: ITaaS + Trust,” found that in the last year, 61% of global healthcare organizations experienced a security-related event in the form of a security breach, data loss, or unplanned downtime at least once. U.S. hospitals with 100 or more beds have spent more than $1.6 billion annually as a result of security incidents.
A recent hacker breach of HealthCare.gov shows that healthcare organizations can be targets for criminals. While no patient information was stolen, the incident should give consumers and the industry pause as outside threats will only make security more difficult.
Despite growing awareness of security breaches, compared to the five other personas examined in the Privacy Index (social me, financial me, citizen me, employee me, and consumer me), the medical me collectively has the highest confidence in healthcare organizations’ ethics (61%) and the second highest confidence in skills (62%). And, only 28% expressed concerns about future privacy. Part of this is explained in a recent Journal of AHIMA article, “Trusted Health IT and IT-as-a-Service: A Prescription for Change.”
As IT is a key enabler in delivering safer patient care at lower cost, many healthcare organizations are beginning to implement hybrid cloud models and IT as a Service, preparing to become the IT service provider of choice within their own networks and beyond.
For patients, this means a better sense of security knowing their healthcare provider is building a trusted hybrid cloud framework for coordinated care, which helps ensure the right data goes to the right caregiver at the right time.
About the author:
Roberta Katz is director of healthcare solutions at EMC where she focuses on helping healthcare organizations move their IT strategies forward as they invest in EMR and advanced medical imaging initiatives, cloud-based platforms, trusted IT, and big data and analytics solutions. Roberta has more than 25 years of health IT industry expertise in developing solutions to help improve patient care delivery, at the point of care, leveraging IT technologies.
October 8, 2014 11:24 AM
Posted by: adelvecchio
, EHR implementation
, EHR selection
Guest post by Kathleen Myers, M.D., FACEP, founder and chief medical officer of Essia Health
Amid the many changes to the practice of medicine over the last 10 years, the most dramatic impact at the point of care has been integrating new information technologies and systems, especially the EHR. Introducing a new or upgraded EHR system is a major undertaking for any hospital, clinic or medical practice. A successful EHR implementation goes beyond selecting the right IT vendor and system. At-the-elbow physician support has become an essential component of successful EHR go-lives, ensuring physician engagement and satisfaction, and letting them focus on patient care while meeting the new technology requirements.
At-the-elbow support is in-person technical expertise provided by external EHR specialists to physicians at their place of work — be it their office, an examination room or even the operating room — before, during and after EHR go-live. EHR specialists embrace the way that physicians learn best, in real time.
There are three key reasons hospitals should consider externally sourced at-the-elbow support for EHR go-live: physician buy-in, patient satisfaction and productivity.
Physician buy-in: Training doesn’t equal support
It goes without saying that physician buy-in is crucial to successful EHR implementations and upgrades. Anecdotal information suggests go-lives that have minimal assigned provider support or support from internal staff are associated with significant provider frustration, challenges with implementation and, on rare occasion, failure.
Many health systems focus their time on selecting the right EHR software but don’t think about ensuring the effectiveness of the software by providing support to physicians — support that goes far beyond computer lab training. Most physicians don’t learn well from cookie-cutter classroom curriculum. It’s not their environment. They want to engage in conversation about the EHR when they’re in an actual patient care environment.
Without buy-in from physicians, the whole go-live — or even the profitability of the hospital or health system itself — can be affected. Surgeons, for example, are an important group from which to gain buy-in in the months leading up to a go-live, given the influence they have over where their patients have their surgeries. If orthopedic surgeons don’t feel involved in the process or adequately supported on the EHR itself, they can make every CEO’s worst nightmare come true and take their total hip, knee and other elective surgeries to another nearby hospital.
The process of gaining buy-in begins with thoughtfully looking at each subgroup of medical staff, and then helping them develop the content and tools they’ll need to care for patients. At-the-elbow support can help them develop these tools. It also includes asking them simple questions like, “What are you worried about?” and “How can we help you?”
Quality patient care: More support means less waiting
When physicians are learning to use an EHR, it means one thing for patients: waiting. Waiting to be admitted, waiting for medication and to be discharged, et cetera.
“I have not run ‘on time’ since we implemented our EHR,” is a common complaint among physicians. When physicians receive at-the-elbow support, they quickly become more comfortable and confident with the new EHR system. This means they can return to their pre-go-live baseline faster, so tasks don’t take longer than they used to before the EHR was implemented. Physicians that are not fumbling with the computer can better interact with their patients, enabling them to provide more focused care throughout the go-live and beyond.
Productivity: Keeping long term drop-off at bay
Though a short term drop-off in productivity is a natural consequence of an EHR go-live, with the right level of physician support, hospitals can make sure the drop isn’t a sustained one.
An orthopedic surgeon with a once-a-week operating room time block might have conducted five knee surgeries in eight hours before the go-live, but the hospital might suggest that the number of cases be scaled down to three to provide time to learn how to use the EHR system. With at-the-elbow support, surgeons can normally get back to their full case load in two to three weeks. Without it, they may never return to their pre-go-live baseline.
At-the-elbow support: The basics
At-the-elbow support begins after physicians complete basic computer lab or online EHR training. A key difference with at-the-elbow support versus training is that it is conducted in a patient care environment, instead of a training playground. In this environment, physicians can see how patient flow will work and what EHR tools they will need to be successful.
The process involves several one-on-one individual or small group meetings with an EHR specialist before the go-live, where workflows are reviewed and tools are developed. The orthopedic surgeon, for example, would build pre-op, intra-op, post-op and discharge note templates for every common case, as well as customize order sets, before the EHR goes live. These sessions also help them get faster on the EHR as they build their skills. When their first case is scheduled after go-live, an EHR specialist joins the surgeon in the operating room and will be there every step of the way, from the time the patient arrives for surgery until they’re in the post-anesthesia care unit recovering. The EHR specialist remains in close vicinity to the physician so assistance can be provided immediately.
Implementing an EHR is a big investment in time, money and human resources. Planning the right level of provider support is critical to realize a strong financial return on an EHR investment. Without provider support, an EHR system implementation may result in physician frustration, a long term drop-off in productivity and patient dissatisfaction. At-the-elbow support before, during and after an EHR go-live can optimize the provider and patient experience and help technology be an asset, not just a requirement.
Kathleen Myers, M.D., FACEP, is an emergency physician and founder/chief medical officer of Essia Health. She can be reached at Kathleen.email@example.com