The Importance of Getting Electronic Health Records Right: Another Way Your Health Data Is at Risk

Usually when we think of our personal health data being at risk, we think of things like dastardly hackers from far away countries or something far more mundane like a failure to have Health Insurance Portability and Accountability Act (HIPAA) protocols in place. While both of these examples may be worth some degree of worry, a new study brings to light a source of risk that few of us may have considered. This study, called “Workarounds to Computer Access in Healthcare Organizations: You Want My Password or a Dead Patient?,” is a potent reminder both of how cumbersome electronic health record (EHR) systems can be and why you AND your health care provider might choose to ignore digital protocols in favor of hands-on health care services.

As you might guess from the title of the study (and as is well summarized in a WSJ blog, investigators found that health professionals will ignore or “work around” digital protocols with some frequency in the interest of providing more efficient care. This news is in some ways shocking but otherwise seems totally unsurprising. On the plus side, providers care more about patient health than computer systems. On the minus side, we as a society are spending remarkable amounts of money to secure health care data, and this is not feeling like money well spent.

To be fair to the health workers at the heart of this study, these systems are quite cumbersome. They do not seem to be designed with the providers in mind. Data fields can vary from hospital to hospital and practice to practice. Even the idea behind the systems, to create a secure, comprehensive health record for each patient which would lead to better diagnoses, less duplication of testing and a reduction in prescription drug abuse, seems unserved by the status quo. Perhaps if the systems truly provided this value and were set up to be more user friendly, the cybersecurity violations described in the study as commonplace would instead be rare. In theory, we are moving towards a better system as EHRs must meet the meaningful use standards begun through the American Recovery and Reinvestment Act of 2009, as well as interoperability which may, if we are lucky, result in less variation among these systems and, therefore, greater ease of use so that providers aren’t saying: “You Want My Password or a Dead Patient?”

Register now for your free, tailored, daily legal newsfeed service.

The Importance of Getting Electronic Health Records Right: Another Way Your Health Data Is at Risk
Blog Health Policy Pulse

Filed under

Topics

Laws

Organisations

Popular articles from this firm

PFAS-t and Furious: Five More AGs Sue “Forever Chemical” Manufacturers *

Irish Data Protection Commission’s Decision Throws Use of Standard Contractual Clauses Into Doubt *

Order’s Up: No Spoliation Sanctions for Cook’s Failure to Back-up Stolen iPhone - Case Law Update *

Unanimous Supreme Court Holds (Reaffirms) False Claims Act Responsibility Requires Offender’s Belief of Lie *

It’s No Surprise that the Administrator for the Estate of Whitney Houston’s Daughter Quit *

More from Health Policy Pulse

Times They Are A-Changin’: Scope of Practice Finally Gets a Closer Look

Section 1557 and Beyond: True Civil Rights Are Coming to Health Care at Long Last

Is true Mental Health Parity finally on the horizon?

What’s old is new again: proposals to rein in drug prices are nothing new

A major loss for consumers: FDA proposed rule on biosimilar naming threatens savings and offers no gain in safety

Related practical resources PRO

Related research hubs