1 / 13

Navigating Privacy and Security Issues for HIE: A Consumer Perspective

Navigating Privacy and Security Issues for HIE: A Consumer Perspective. Deven McGraw Chief Operating Officer National Partnership for Women & Families. www.nationalpartnership.org. A nonprofit, nonpartisan consumer advocacy organization in Washington, DC Our Priorities:

huela
Download Presentation

Navigating Privacy and Security Issues for HIE: A Consumer Perspective

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Navigating Privacy and SecurityIssues for HIE: A Consumer Perspective Deven McGraw Chief Operating Officer National Partnership for Women & Families www.nationalpartnership.org

  2. A nonprofit, nonpartisan consumer advocacy organization in Washington, DC Our Priorities: • Improve health care quality – Americans for Quality Health Care project • Promote fairness in the workplace • Advance policies that help women and men meet the dual demands of work and family.

  3. Our interest in Health IT and HIE • Health IT and electronic health information exchange hold great promise for realizing dramatic improvements in quality by helping to • Reduce medical errors • Ensure care is more evidence-based • Get patients more involved in their own care • Facilitate measurement and public reporting of provider performance.

  4. Our involvement • Co-chair of AHIC Confidentiality, Privacy and Security Workgroup • Member, AHIC Personalized Healthcare Workgroup • Member, HITSP • NEW: Grant from the Markle Foundation to engage consumer advocacy organizations in state HIT/HIE efforts & provide them with technical assistance

  5. Barriers to Rapid Implementation • Consumer/patient concerns about privacy and security. • Many believe movement to electronic records will result in greater risk to patient privacy. • Survey data shows that the public has significant privacy concerns • Promise of e-health won’t be realized unless we ensure adequate privacy and security standards are built in from the start.

  6. Establishing E-Health Networks Presents Enormous Challenges • Overcoming public distrust • Finding a sustainable business model and/or securing sufficient financial resources • Interoperability • Legal/policy uncertainties – HIPAA, state law variations

  7. National Consumer Principles • Individuals should have a means of direct, secure access to e-health information. • Individuals should know how their e-health information may be used and who has access to it. • Individuals should have control over whether and how their information is shared.

  8. National Consumer Principles (cont.) • Systems for e-health data exchange must protect the integrity, security, privacy and confidentiality of an individual’s information. • Governance and administration of e-health networks should be transparent and publicly accountable.

  9. So, what about HIPAA? • Confusion about scope is widespread • Too many use HIPAA as excuse for not sharing health information • At the same time, many believe it is insufficient to protect privacy • In a policy vacuum, fears about insufficient privacy protection take center stage – little room for public debate about risks of not moving forward.

  10. Facing the HIPAA Challenge • Some options: • Start over • Do nothing – current law will suffice • Clarify - & modify if necessary (federal response) • States still have the option to adopt more stringent standards vs. single standard

  11. AHIC CPS Workgroup • Spring 2007: recommended to AHIC that HIPAA “covered entities” include all engaged in HIE (rejection of business associate model) • Next steps: • Should all HIPAA requirements apply to all HIE entities equally? • Do we need more than HIPAA in some circumstances?

  12. Involve Consumer Advocates in Health IT Discussions • Consumer advocates should be part of the difficult discussions – particularly with respect to setting policies for privacy and security. • Consumer advocates can mobilize their constituencies and provide the “push” needed to get systems implemented. • Not including consumers in the discussion could jeopardize success of the project.

More Related