It is tempting to believe that the United States has made little progress in the critical area of protecting the privacy and security of electronic health information. But important work has been done and is now available to inform a policy discussion about privacy and security issues in health care. This paper will provide a brief overview of a major nationwide initiative with examples of findings and recommendations.
In the last year, 33 states and Puerto Rico have proposed solutions and implementation plans to address the confusing and conflicting privacy and security requirements they identified. Another initiative will build upon these state efforts, as described below. All of this is designed to provide the guidance and resources needed to build and run secure and trusted health data exchanges.
One important lesson from the process: Privacy and security issues must be addressed whether or not health information is exchanged electronically or on paper. The work revealed significant problems in current paper-based environments, and moving to electronic data exchange—combined with the significant trustbuilding work that is required to do so—can mitigate many of those problems.
Reproduced with permission from BNA's Health Care Policy Report, Vol. 15, No. 42 (Oct. 29, 2007) pp. 1434-1436. Copyright 2007 by The Bureau of National Affairs, Inc. (800-372-1033) http://www.bna.com