Liveblogging from HIMSS 13: Managing Privacy and Security Challenges of Patient EHR Portals

Online Tech is exhibiting our HIPAA hosting solutions for the healthcare industry at HIMSS 13 in New Orleans this year! Tune into our Twitter and follow our blog for updates on the latest HIMSS 13 news.

If you’re at HIMSS 13, visit booth #1369 to say hi or schedule a free one-on-one consultationwith a panel of health IT experts.

Managing Privacy and Security Challenges of Patient EHR Portals

: HIMSS 13 Security Challenges of Patient EHR Portals

Adam Greene, JD, MPH Davis Wright Termaine and Jackie Monson, JD, CHC Mayo Clinic discussed some of the real life privacy and security challenging facing patient EFR portals at HIMSS 13.

One aspect that challenges patient portals is handling permissions of patient representatives for minors or those who have a medical decision maker appointed.

Mayo clinic found that they had more patient requests for amendments to their patient records. It’s easy to request an amendment, but this has proven overwhelming to the security and privacy office so far. They have seen a 100% increase in patient requests for medical record amendments. This ranges from simple changes such as “Right” to “Left” for correcting an amputation record to asking for their entire medical record to be rewritten.

Many patients are reading notes from physicians for the first time, and correcting inaccuracies or objecting to aspects they disagree with.

Make sure to include the patient portal within the scope of the risk assessment to evaluate risks including:

interception during transmission,
unauthorized access,
internet-facing interface,
EHR portal software problems (has it been independently tested)

READ

The Keys To Maintaining Safety With Medical Equipment

Authentication issues
Does there need to be in-person authentication? Will you require seeing a driver’s license for example? What do you do for patients who cannot easily come in person, but want remove access to their information.

How about strong passwords? Will they impact patient usability?

How are the servers protected? Are their physical safeguards protecting against theft? Is encryption being used? What happens of the patient contributes to a security failure with a weak password, sharing credentials, or loses their mobile device. What can you do to limit risk of any single point of faliure?

Jacki Monson, JD, CHC has been struggling with security issues at Mayo clinic. Now they have an outside vendor performing monthly testing and make sure that their audit logs are turned on so they can get to the bottom of troubleshooting issues. For example, their patient portal was changing a number

Mayo allows their patients to choose if they want in-person validation or not. Some patients want to make sure that their spouses can’t authenticate even if they know answers to personal information such as what was the first car they drove or where they lived 15 years ago.

Make sure that audit logging is in place to a level of detail that will be helpful to find out what went wrong when it goes wrong.

PHR vs. EHR

PHR = Personal Health Record is a patient controlled record
EHR portal is a window into a patient’s own electronic health record – it is not their patient-controlled PHR.

PHR and EHR can work together so that patient gets to see their information through the EHR portal, the EHR portal feeds into the PHR, and/or facilitating patients adding information through the PHR and deciding if they want it shared with the EHR.

READ

Image Utilization Is On The Rise In The United States – Is It Good?

Is PHR considered PHI (protected health information) belonging to the covered entity? Is it on the covered entity’s servers or their business associates? Just because the patient controls their PHI in the PHR, if the patient information is on the CE or BA servers, then it must be protected.

Will the portal include sensitive information subject to state law restrictions such as HIV/STD tests, dental health information, genetic test results, alcohol or substance abuse treatment information?

Mayo spans many states, and follows the most restrictive state law that applies to information in the portal. Currently, clinical information that triggers a strict state law are not being released on the portal, for example, information for an emancipated minor.

Mayo has had to meet mobility security challenges with their new mobile health applications for iPhones and iPads which helps Mayo Clinic meet MU requirements. These include authentication, encryption, password, privacy challenges such as appointment reminder popups and portal messages to patients.

What does the future hold? Stage 2 Meaningful Use pushes strongly for the use of patient portals. It also strongly promotes inclusion of patient amendments. When an HIE maintains the EHR record, will an HIE provide a patient portal view for patients?

The post Liveblogging from HIMSS 13: Managing Privacy and Security Challenges of Patient EHR Portals appeared first on Managed Data Center News.

5 Smart Ways To Save Money For Medical Bills

How To Handle Medical Office Customer Service This Holiday Rush

Cost Saving Tips For Medical Device Companies

How Medical Professionals Should Handle Waste During COVID-19

5 Smart Ways To Save Money For Medical Bills

Sustainable Tips For Financial Management In Medical Practice

An Important Guide To Budgeting For Doctor Appointments

Try These Tips On How To Handle Medical Expense Debt

How To Handle Medical Office Customer Service This Holiday Rush

How Medical Professionals Should Handle Waste During COVID-19

Sustainable Tips For Financial Management In Medical Practice

Taking Your US Healthcare Administration Degree Abroad

The Benefits Of Apps That Help You Stay Fit

4 Reasons Why Medical Device Compliance Matters

A Detailed Guide On Developing A Female Healthcare Tracking App

Must-Haves For Driving Meaningful Patient Portal Use

The Importance Of Medical Labels And Supplement Labels

The Benefits Of Updating Your Hospital’s Systems

Reasons Why HIPAA Is Vital For The Healthcare Industry

Hospitals Suffer From Denied Claims – Can Proper Patient Identification Help?

A Detailed Guide On Developing A Female Healthcare Tracking App

The Top Trending Health Care Apps In 2020

How Wearable Tech Insights Are Improving Healthcare

The Roles Of AI, IoT, And Cybersecurity In Transforming Healthcare

Why You Need To Know The Risks Of Self-Diagnosis

Technological Advancements in The Medical Field That You Should Keep An Eye On

mHealth Apps And Digital Doctors: The Future Of The Healthcare Sector?

EHR For Rural Hospitals: Criteria And Access

7 Tips To Make Sure Your Medical Practice Is Found Online

4 Top Reasons Why App Developers Love Apple Health Records API

Should Healthcare Care About Branding?

How can Healthcare Professionals Manage their Reputation Online

The Benefits Of Apps That Help You Stay Fit

Third Party Lab Testing Plays Crucial Role In CBD Decision Making

What Are Sensors And How Are They Used In Health?

Must-Haves For Driving Meaningful Patient Portal Use

The Important And Powerful Role Of Portable Oxygen Concentrators

3 Promising New Medical Alert System Technologies To Know About

The Keys To Maintaining Safety With Medical Equipment

Sports Medicine: Preventing Sports Injuries With Wearable Sensors

What Innovations are Transforming the Medical Transcription Industry

4 Important And Helpful Medical Advancements For 2020

The Importance Of Medical Labels And Supplement Labels

How Clinical Trials Are Changing Cancer Outcomes

9 Effective Ways To Keep Your Joints Healthy And Thriving

Coronavirus and Animals: What You Should Know

Why Automated Appointment Reminders Should be the Norm Among Healthcare Providers

How Can You Best Calculate Your Healthy Eatery’s Food Cost?

Common Alcohol Detox Mistakes to Avoid

CPR And Cardiac Arrest Management Of Patients Amid COVID-19

Quarantine Weight Gain: Should You Worry About It?

Tips For Ensuring Your Teeth And Gums Remain Healthy

The Signs And Symptoms Of Internal Hemorrhoids

CPR And Cardiac Arrest Management Of Patients Amid COVID-19

4 Important Tips To Maintain Your Cardiovascular Health

Top AED Models To Minimize Risks Of Cardiac Arrest 2019

3 Things To Consider When Looking For A Heart Doctor

Tips For Ensuring Your Teeth And Gums Remain Healthy

Dental Care: Understanding Restorative Dentistry And Cosmetic Dentistry

How AI Technology Is Shaping The Dental Industry

How To Introduce Dental Hygiene To Children

4 Clever Ways To Manage Your Diet With Diabetes

Are There Important Links Between Diabetes And Joint Pain?

Everything You Need To Know About Managing Diabetes In Later Life

How Technology Is Making Diabetes Management Easier

Try These Helpful Tips For Preventive Eye Maintenance

How Can I Maintain And Monitor My Eye Health?

Your Helpful Guide To Recovering After Cataract Surgery

Top Tips To Improve And Protect Your Eyesight

Take These 4 Important Steps For Healthy And Happy Aging

Living Alone When You’ve Been Diagnosed With Alzheimer’s

A Guide To Healthy Aging And Happier Golden Years

10 Early Dementia Signs You Need To Be Aware Of

The 4 Biggest Reasons You’re Not Sleeping Through The Night

Can CBD Help You Sleep Better? Here’s What To Know

Sleep And Immunity: What Is The Connection?

Understanding Hypnosis For Sleep And Its Major Benefits

Quarantine Weight Gain: Should You Worry About It?

Uncontrollable Overeating: 5 Often Overlooked Causes

Your Helpful Guide To Coolsculpting And How It Works