| EHR-- The Future of Healthcare and a Physician IT | | | | that will foster better care, but will also test and |
| Challenge | | | | challenge your ability to ensure the confidentiality, |
| EHR, or Electronic Health Record is Defined by the | | | | integrity and availability of patient data. |
| National Alliance For Health Information Technology | | | | Two recent examples of large volumes of personal |
| (NAHIT) as "an electronic record of health related | | | | health information being hacked highlight just how |
| information on an individual that conforms to actually | | | | difficult it can be to protect medical records. |
| recognized interoperability standards and that can be | | | | In October 2008, Express Scripts, one of the nation's |
| created, managed, and consulted by authorized | | | | largest processors of pharmacy prescriptions, became |
| clinicians and staff across more than one healthcare | | | | the target of medical information extortionists. These |
| organization" will soon be changing the landscape of | | | | hackers threatened to disclose personally identifiable |
| healthcare forever. | | | | medical information for millions of Americans if the |
| EHR will fundamentally change the health information | | | | company did not comply with their demands for |
| security risks for your practice | | | | payment! At one point Express Scripts was offering a |
| Perhaps more important to you is that EHR will also | | | | $1,000,000 reward for information that would lead to |
| fundamentally change the way your practice deals | | | | the arrest and conviction of those responsible. |
| with Physician IT in the future; especially as it relates to | | | | More recently, in May of 2009 another mass hacking |
| health information security risks. When taken to its | | | | of health information was reported by the Virginia |
| logical extension your practice will no longer be a | | | | Prescription Monitoring Program (VPMP). The VPMP is |
| standalone Physician IT entity but rather part of much | | | | used by pharmacists and others to identify potential |
| larger and more complex interconnected ecosystem | | | | prescription drug abuse. It has been reported that the |
| of information systems through entities known as | | | | hackers encrypted over 8 million patient records and |
| Health Information Organizations (HIOs) and Health | | | | over 35 million prescriptions before posting a note on |
| Information Exchanges (HIEs). | | | | the VPMP website that flaunted the hack-job and |
| HIOs are defined by the National Alliance for Health | | | | demanded money before the records would be |
| Information Technology as organizations that oversee | | | | returned. |
| and govern the exchange of health related information | | | | Physician IT, Information Security and the Small |
| among organizations according to nationally recognized | | | | Healthcare Practice |
| standards. HIEs are defined by the NAHIT as | | | | While these breaches occurred at much larger |
| facilitating the electronic movement of health related | | | | institutions they are illustrative of the perils facing small |
| information among organizations according to nationally | | | | healthcare providers who may not have the expertise |
| recognized standards. | | | | or capital resources that large healthcare institutions do. |
| Clearly, the concept of EHR creates an environment | | | | |