IMPROPER USE OF MEDICAL INFORMATION



Similar documents
For ONC S&I DS4P. Dennis Giokas Chief Technology Officer Canada Health Infoway Inc. January 25, 2012

SOA in the pan-canadian EHR

SOA in the pan-canadian EHR

2009 Progress in Comprehensive Care for Rare Blood Disorders Conference

Privacy and Security within an Interoperable EHR

EMR and ehr Together for patients and providers. ehealth Conference October 3-4, 2014

Presentation in Steering Group meeting Planning Commission, Govt of India. Public Health Informatics Group Discussion Inputs to Steering Committee

How To Write An Ehr Blueprint

Electronic Health Records - An Overview - Martin C. Were, MD MS March 24, 2010

Creating a national electronic health record: The Canada Health Infoway experience

Overview of ehr Development. Slide - 1

Canada Health Infoway

CMS & ehr - An Update

International HL7 Interoperability Conference - IHIC 2010

HIPAA Privacy Keys to Success Updated January 2010

HIPAA for HIT and EHRs. Latest on Meaningful Use and EHR Certification: For Privacy and Security Professionals

Health Information Technology in Home Care and Hospice

Overview of an Enterprise HIE at Virtua Health

North Shore LIJ Health System, Inc. Facility Name

REQUEST FOR INTEGRATED SERVICES

Singapore s National Electronic Health Record

Physician Champions David C. Kibbe, MD, & Daniel Mongiardo, MD FAQ Responses

HL7 & Meaningful Use. Charles Jaffe, MD, PhD CEO Health Level Seven International. HIMSS 11 Orlando February 23, 2011

Patient Privacy and HIPAA/HITECH

Electronic Medical Records: Legal and Ethical Implications for Patients

Frequently Asked Questions About Quality Data Reporting

The State of U.S. Hospitals Relative to Achieving Meaningful Use Measurements. By Michael W. Davis Executive Vice President HIMSS Analytics

I n t e r S y S t e m S W h I t e P a P e r F O R H E A L T H C A R E IT E X E C U T I V E S. In accountable care

Data Integrity in an Era of EHRs, HIEs, and HIPAA: A Health Information Management Perspective

New York ehealth Collaborative. Health Information Exchange and Interoperability April 2012

Standardization of the Australian Medical Data Exchange Model. Michael Legg PhD

E-Health An overview

Message from Dr York Y N CHOW, GBS, JP Secretary for Food and Health

The Use of Patient Records (EHR) for Research

Environmental Health Science. Brian S. Schwartz, MD, MS

i-care Integrated Hospital Information System

Informatics Strategies & Tools to Link Nursing Care with Patient Outcomes in the Learning Health Care System

Addressing the State of the Electronic Health Record (EHR)

DEMYSTIFYING ELECTRONIC HEALTH Presented to Central East LHIN Board of Directors. January 22, 2014

Electronic Health Record Systems and Secondary Data Use

Emerging Trends in Health Information Technology: Personal Health Record(PHR) uphr. Nazir Ahmed Vaid ehealth Services (Pvt) Ltd.

Interoperability: White Paper. Introduction. PointClickCare Interoperability January 2014

ehealth, HIS, etc ehealth All information about health HMIS mhealth HIS Statistical IS Credited: Karl Brown, Rockefeller Foundation

Identity: The Key to the Future of Healthcare

Health Information Technology 101

Data Center Hosting: Build, Upgrade or Partner Tuesday, February 21, a.m. 12 p.m.

Keweenaw Holistic Family Medicine Patient Registration Form

Industry specific cover image

Heuristic Walkthrough Usability Evaluation of Electronic Health Record with a Proposed Security Architecture

Understanding Health Information Technology and Health Information Exchange

Deborah L. Lafky, Ph.D, CISSP Office of the National Coordinator for Health IT, Office of the Secretary, HHS

Health Informatics Development in the Hospital Authority

Of EHRs and Meaningful Use. Pat Wise, RN, MA, MS FHIMSS COL (USA ret d) VP, Healthcare Information Systems, HIMSS

State of New Hampshire. Phase 3 Converging on Solutions discussion deck Business and Technical Operations Workgroup. July 20, 2010

Securing Patient Data in Today s Mobilized Healthcare Industry. A Good Technology Whitepaper

Meaningful Use Update Eligible Professionals. December 2011

Electronic Medical Records Getting It Right and Going to Scale

NOTICE OF PRIVACY PRACTICES

Tool 1. Scenarios Guide

HIPAA: Protecting Your. Ericka L. Adler. Practice and Your Patients

EHR Selection. Fall 2009 IDN Summit

Meaningful Use, ICD-10 and HIPAA 5010 Overview, talking points and FAQs

BUILDING PRIMARY CARE RESEARCH INFRASTRUCTURE AT YOUR COMMUNITY HEALTH CENTER

Healthcare Reform and Medical Data Security and Privacy

Medical records - Summary of the Physicians Health Information System

Kaiser Permanente Comments on Health Information Technology, by James A. Ferguson

HealthInfoNet s Clinical Portal Supports PCMH Goals

HIM 111 Introduction to Health Information Management HIM 135 Medical Terminology

IBM Software. IBM Initiate: Delivering Accurate Patient and Provider Identification for Canadian Electronic Health Records

ehealth EHR Viewer & Integration Joint Service/Access Policy Executive Summary for Authorized Provider Organizations ("APOs")

Health Insurance Portability & Accountability Act (HIPAA) Compliance Application


BI en Salud: Registro de Salud Electrónico, Estado del Arte!

Integration for your Health Information System

Use Cases for Argonaut Project. Version 1.1

Introduction to Information and Computer Science: Information Systems

It s Time to Transition to ICD-10

CareConnect. Current State and Blueprint Context. Version 1.1

Patient Controlled Health Records Standards and Technical Track

Defining the Core Clinical Documentation Set

Meaningful Use Stage 2 Certification: A Guide for EHR Product Managers

Understanding EHRs: Common Features and Strategic Approaches for Medicaid/SCHIP

De-identification, defined and explained. Dan Stocker, MBA, MS, QSA Professional Services, Coalfire

Version 1.0. HEAL NY Phase 5 Health IT & Public Health Team. Version Released 1.0. HEAL NY Phase 5 Health

LEVERAGING HEALTH INFORMATION EXCHANGE TO CREATE A CONNECTED CARE COMMUNITY

Implementing Electronic Health Records in the Kurdistan Region

Care Coordination and Realtime Risk Stratification

ELECTRONIC HEALTH INFORMATION

Grand Rapids Medical Education Partners Mercy Health Saint Mary s Spectrum Health. Pam Jager, GRMEP Director of Education & Development

Health Informatics Standardization: Relevance and Indian Initiatives

REQUESTING ORGANIZATION INFORMATION:

Distributed Networking

Electronic Health Records: Trends, Issues, Regulations & Technologies

HIPAA Happenings in Hospital Systems. Donna J Brock, RHIT System HIM Audit & Privacy Coordinator

EHRs and Information Availability: Are You At Risk?

Mona Osman MD, MPH, MBA

Using EHRs, HIE, & Data Analytics to Support Accountable Care. Jonathan Shoemaker June 2014

ColumbiaDoctors, the Physicians and Surgeons of Columbia University define the health record as follows:

Remote Monitoring of Clinical Trials and EMRs

HIPAA Security Rule Compliance

Transcription:

IMPROPER USE OF MEDICAL INFORMATION ehealth PRIVACY & SECURITY Presented at 5th Annual National Conference on Healthcare Leadership INNOVATION 2011, Bangalore 26th Jan 2011 Dr Pankaj Gupta ehealth Business Executive

Source: http://healthcareitstrategy.blogspot.com/ 2005 Dr Pankaj Gupta Slide 2 28 Feb 05

2005 Dr Pankaj Gupta Slide 3 28 Feb 05 Healthcare Data Sources Homecare Ambulance Clinicians Integrated View Hospital Emergency Diagnostic

Health Information Exchange - Chances of Data leaks galore! 2005 Dr Pankaj Gupta Slide 4 28 Feb 05 Standardized Architecture EHRS EHRS EHR SOLUTION (EHRS) EHR INFOSTRUCTURE (EHRi) EHRS EHRS EHRS EHRS EHRS EHR SOLUTION (EHRS) EHR INFOSTRUCTURE (EHRi) Standardized Data Vocabularies (encoding rules) Ancillary Data & Health Information Data Warehouse EHR Data & Registries Data & Standardized Interfaces Ancillary Data & Health Information Data Warehouse EHR Data & Registries Data & Standardized Data Structures Longitudinal Record Health Information Access Layer Longitudinal Record Health Information Access Layer Standardized Functional Behavior Point of Service Application Point of Service Application EHR Viewer Point of Service Application Point of Service Application EHR Viewer Homecare Homecare Emergency Emergency INTEGRATED VIEW INTEGRATED VIEW Clinicians Integrated View Clinicians Integrated View Hospital Emergency Hospital Emergency Diagnostic Diagnostic

HIPAA Title II Title II: Preventing Health Care Fraud and Abuse; Administrative Simplification; Medical Liability Reform Data Privacy Transactions and Code Sets Data Security Unique Identifiers 2005 Dr Pankaj Gupta Slide 5 28 Feb 05

Data Privacy Protected Health Information (PHI) Right to keep personal information from outside world Hospital staff, in-house and outsourced IT staff may be authorized to see data and may disclose it inappropriately Protect sensitive information PNDT and MTP Act Positive results for sensitive Lab tests - HIV etc. Public health research - Anonymised data EMR implementation challenge - People master, Deptt master to be in sync in integrated systems 2005 Dr Pankaj Gupta Slide 6 28 Feb 05

Transactions and Code Sets Master Data integration challenge codify diagnosis, procedures and order sets Data Analytics challenge - standard terminology for clinical notes Diabetes with MI discharged with B-blocker Diabetes with Coronary Atherosclerosis discharged with B-blocker Type-II Diabetes with CHF discharged with Metoprolol 2005 Dr Pankaj Gupta Slide 7 28 Feb 05

Data Security Network security Firewalls, Data centre, IT Support Teams, Outsourcing Data Security - Encryption Public/Private keys Physical security Authentication Authority Audit 2005 Dr Pankaj Gupta Slide 8 28 Feb 05

2005 Dr Pankaj Gupta Slide 9 28 Feb 05 Physical Security Authentication - are you who you say you are? Passwords, Biometrics (finger print, retinal scan), smartcards Authority - do you have a need to know? User U in role R who satisfies constraint C has permission P Ms Ann working as Nurse in ED has r/w/x permissions; whereas she doesn t have those permissions offduty Ensure only authenticated users to perform authorized activities on authorized data Audit - record of who actually got into what Record of every entry, correction, change, over ride etc

Unique Identifiers Point-to-Point integration between 2 systems People master to be in sync Department master to be in sync Dr Om Prakash Singh in ENT vs Dr OP Singh in Otolaryngology? Health information exchange between systems Physician Registry Patient Registry Disease Registry Document Registry 2005 Dr Pankaj Gupta Slide 10 28 Feb 05

2005 Dr Pankaj Gupta Slide 11 28 Feb 05 De-Identify before Data Analytics Clinical Signs Symptoms Diagnosis Demographics Radiology Laboratory Physicians Department Pharmacy Insurance Hospital

2005 Dr Pankaj Gupta Slide 12 28 Feb 05 Summary of Privacy & Security Computing/network infrastructure can deal with security But privacy is a policy matter Anonymizing of databases helps but it isn t foolproof In general, people are the weakest security and privacy link

Soon these small steps will be a Mammoth 2005 Dr Pankaj Gupta Slide 13 28 Feb 05

Solid foundation goes a long way... 2005 Dr Pankaj Gupta Slide 14 28 Feb 05

Thanks. Dr_PankajGupta@yahoo.com LinkedIn:http://www.linkedin.com/in/drpankajgupta Blog:http://www.healthcareitstrategy.blogspot.com/ 15

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information