The insurance industry is 'under the gun' right now, and this allows the provider sector to avoid the fundamental issue…
Readers Write 8/4/09
Submit your article of up to 500 words in length, subject to editing for clarity and brevity (please note: I run only original articles that have not appeared on any Web site or in any publication and I can’t use anything that looks like a commercial pitch). I’ll use a phony name for you unless you tell me otherwise. Thanks for sharing!
HIE: To Be It or To Do It
By Kipp Lassetter, MD
Since the start of the ARRA-generated deliberation over the definition of meaningful use, health information exchange (HIE) has become one of the healthcare industry’s hottest buzz terms. Yet ask what this crucial term means and you may have trouble pinning down a consistent response.
HIE has typically been viewed as a synonym for a regional health information organization (RHIO). However, as the industry has evolved, the real-world use of the term has expanded, making HIE a notoriously gray area. Distinguishing between an HIE as an entity and HIE as an action is key to resolving this confusion.
An HIE-as-RHIO — like CalRHIO or the Delaware Health Information Network (DHIN) — is a regional entity run by a third-party, neutral organization with a fixed governance structure. But in its broader sense, HIE is an action and an objective that applies more broadly within the care community to any hospital, health system, and physician practice pursuing health information exchange.
In the realm of this broader definition of HIE-as-an-action, hospitals, health systems and RHIOs share the common goal of exchanging healthcare information with their affiliated physicians, laboratories, member hospitals, payers, other ancillary service providers, and with patients directly.
In fact, hospitals, health systems and RHIOs can use the same technology to ensure the acquisition of data from disparate systems across dispersed care locations and publish that information to data consumers. With a sufficiently robust HIE technology, these data consumers — including providers, payers, hospitals, and patients — can, in turn, publish information to the network, producing a bi-directional exchange of actionable health information.
It is important to pay attention to this distinction between the concepts of HIE as an entity and HIE as an action, i.e. organizations like RHIOs and the act of exchange itself. If HIE is a requirement for demonstrating meaningful use, does the government declaration refer to HIE as an entity (an HIE organization) or does it refer to the action (the exchange of health information)? Though this may appear to be a purely semantic argument, the distinction becomes relevant when selecting a health information exchange solution.
If a vendor promotes its product as an HIE solution, does that mean the solution provides health information exchange only within the four walls of the hospital? Or is it also capable of connecting to broader state, regional, and/or national health information exchange platforms? The latter aligns best with the government’s current explanation of meaningful use.
Per the federal HIT Policy Committee’s revised recommendations for meaningful use, the capability to exchange health information is required where possible in 2011. Also, significantly, participation in a national HIE is required by 2015. This clarification suggests that hospitals and health systems should ensure that their HIE solution delivers two levels of capabilities — providing data exchange within the organization and then seamlessly connecting to broader HIE platforms.
Kipp Lassetter, MD is the CEO of Medicity.
Office of Civil Rights and HIPAA
By Deborah Peel, MD
This could be scary. These are the people who responded to the over 40,000 complaints of privacy violation citizens sent to them by having DOJ investigate and penalize a handful of individuals for identity theft.
On the other hand, most privacy complaints were for disclosures of PHI that do not violate HIPAA because there is nothing much left in it to violate. HIPAA was gutted in 2002 and virtually every player in the healthcare system (all CEs and BAs) was granted the right to use and disclose every American’s PHI without consent for TPO. People are outraged to learn that when others decide to use, disclose, or sell their PHI, it is no longer a privacy violation because the Bush Administration removed the key consumer protection in the HIPAA Privacy Rule.
Once HIPAA was gutted and over 4 million CEs/BAs can decide when to use and disclose our data, there was not much left to protect consumers. Ensuring the security of health databases and software is very critical, but alone, without consumer control over PHI, is not enough to make systems trustworthy.
HIPAA is an exposure rule now; HITECH did not restore the patent’s right of consent at the federal level. But, the right to health privacy still exists in Constitutional and common law, so complaints about privacy violations sent to OCR have to be dealt with via the state and federal court system instead, which is almost impossible for an individual to pursue. HITECH did authorize state AGs to enforce HIPAA, but again, the key enforcement that patients want is the right to control use and disclosures of PHI, which do not violate HIPAA, but do violate medical ethics and Constitutional and common law.
Looks like OCR will now enforce security requirements and will eventually make the rules to ban sales of PHI (they will go through a rulemaking process and propose amendments to HIPAA, so HIPAA will comply with the ban on sales required by HITECH).
Again, OCR has not met the public’s expectation of being the watchdog for their interests.
Deborah Peel, MD is a practicing physician and a board member of Patient Privacy Rights.
The PACS Designer’s Review of Meaningful Use Concepts
By The PACS Designer
With the American Recovery and Reinvestment Act of 2009 (ARRA) allocating funding for Healthcare IT solutions to promote meaningful use of software solutions, TPD thought it would be good to review how it can be accomplished meaningfully.
We’re all aware of the controversy surrounding CCHIT-certified EMRs and what they can bring to the adoption of usable software for physicians without significantly impeding their daily work routines. While obtaining the CCHIT certification draws attention for the vendor to their product offerings, it doesn’t guarantee that using their EMR will bring new efficiencies to your practice. The reason is there’s much more to the implementation than the a standalone certified EMR solution.
First, when installing an EMR solution, you need a central database location to store patient data for further clinical use in daily activities. Typically the EMR vendor supplies a data storage location for its software only. This causes another silo to be created with limited functionality ,thus hampering its expansion for other data collection activities (i.e. lab results and other data parameters). If the EMR solution comes with a data port to receive and send data, then some progress is possible for further integration efforts for the practice.
When it comes to measuring meaningful usage, it should be viewed with a broad spectrum of daily activities beyond the clerical function that is present in most EMRs.
One early benefit of an EMR that physicians can utilize is the e-prescribing function. If the EMR software has an export function, you will be able to forward your prescriptions to the appropriate pharmacy, thus eliminating the need for giving the patient a paper copy and/or faxing it for the patient. Also by using electronic forwarding for prescriptions, you are beginning the meaningful use process which should prove that payment for performance is actually happening within the practice.
An example of an e-Prescribing application is "The National ePrescribing Patient Safety Initiative (NEPSI)", which is a joint project of dedicated organizations that each play a unique role in resolving the current crisis in preventable medication errors. Their website, Nationalerx.com, offers physicians a free solution that will help them create an electronic prescription that can be forwarded to a pharmacy. Also, by using such an application, CMS will pay each physician $3K to $5K for proving that meaningful use is taking place within an EMR system.
Some other questions that need answering are:
- Does the EMR solution permit import of lab results through a data port? If not, it should not be viewed as enhancing further meaningful usage.
- Does the EMR solution have export capabilities to send data to a remote storage location for redundancy and secure archiving purposes? If not, what other method will you use to protect valuable patient data parameters that could populate a PHR for the patient, or a Continuity of Care Record (CCR) for another provider?
In summation, the most practical solution should interface with a master database to permit easy creation of electronic prescription capabilities, a data import/export feature, and adequate security protection to insure safe meaningful use concepts.
Finally, while it doesn’t affect the primary care marketplace to any great degree, it is important to note that the trend for the future will be migrating data from numerous silos into a federated architecture to enhance the chances for data sharing, and also help in the review of trends to improve the overall quality of health treatment processes.
The forum offered by HIStalk continues to be applauded for posting both sides (multiple sides?) of issues related to healthcare IT and the adoption of EMR. Both docs, patients and policy makers need current info to arrive at a practical, beneficial solution to the mess that is the US Healthcare delivery system.
I am not trying to beat just one drum, seriously I am not. However, I am still not comfortable with the proposed HIE structures that will extend outside of my providers walls.
Can someone please tell me why the creation of RHINs and NHINs are technically superior over expecting the patient to own and transmit the data as needed? Am I still wringing my hands over a subject that has already been decided for me?
One caveat to your reply, don’t tell me that consumers won’t be responsible for their data. It seems as though the technological hurdles that stand in front of regional and national exchanges far out shadow the hurdles of “people are irresponsible”.
If HIE outside of the walls of my provider are inevitable, then so be it. However, this conversation seems to be a distraction from the real sources of wasteful spending that consumes more than half of our healthcare dollars in the US.
Mindful Use of Business Intelligence to demonstrate Meaningful Use of EHR: Meaningful Use mandates that outcomes produced from utilization of healthcare information technology are the desired product of use. Let me explain why MU is a good process that will only increase the likelihood of quality healthcare being delivered by providers:
* Percentage of diabetics with A1C under control – The American Diabetic Association recently released guidelines for controlling diabetic glycemic residuals and suggests a value of 6.5% for controlling diabetic patients. Subsequently, under the recommendations for demonstrating MU of your EHR, a proposed target value for your A1C diabetic patients is 8%; eight degrees of separation might be standing in the way of demonstrating MU.
* Percentage of your patients with LDL under control – Here again is another goal targeted for U.S. providers to maintain their clientele’s health and demonstrate the percentage of patients’ LDL residing under 100 mg/dl.
* Percentage of your patients with HDL (although not on the matrix for MU) over recommended concentrations would have to be determined by evidence based medicine to balance the ratio of LDL to HDL; this measure would probably confuse patients and providers because this measure encourages the increase of HDL values to help offset the value of LDL. High HDL is good, Low LDL is good balances the equation promoting evidence based medicine to decide.
These are just a few of my favorite things when trying to demonstrate good health in the United States. Meaningful Use will be a great adventure in disclosure for the state of health in the U.S. and maybe reminds the citizenry that the Overall U.S. Health System is number 37 as reported by the World Health Organization.
Numeric, didactic and quantifiable outcome measures from the delivery of healthcare is now becoming the key issue for improving our WHO indicators perhaps putting as much distance as we can between the U.S. #37 and Cuba #38 and fulfill demonstration of Meaningful Use of HIT.
Improving EHR and PHR adoption requires that disparate providers can accurately identify the patient when requesting and sending clinical information. Without that, consumers and providers won’t have trust in the system and will resist adoption. A patient registry helps solve these challlenges for both the community HIE and within the hospital/IDN.
Privacy controls need to be tightened up by a huge degree before the HIE becomes a feasible concept to me and a lot of the people I know. The reality is that privacy is something that you cannot get back – once you’ve lost it it’s gone forever (thanks google). So for somebody like me, who travels between one doctor and one hospital, HIEs, especially broad national ones, only serve to increase the possible ways in which my privacy can be violated. I would wager that most people in the US don’t travel more than 50 miles from their homes more than a few times a year, and so the “need for emergency purposes” argument is weakened.
That said, if they design the HIEs to be completely in the patient control (and if you read the meaningful use elements, they currently say to “patient authorized entities”) then I feel better about it. The HIE becomes an infrastructure that my data may or may not be part of, depending on my choice. And I can broaden its availability as-needed when I travel, and shrink it again when I return, to cover me for emergency purposes. These controls, and specifically the legal backing for them, seems to be lacking right now though.
Bravo DRM…well stated