The Markle Foundation's "blue-button" concept for enabling patients to download their records from a secure website is suitable for a wide variety of healthcare organizations, says Josh Lemieux, the foundation's director of personal health technology.
Hospitals and physician group practices applying for federal incentive payments for using electronic health records must carefully address privacy as well as security issues, says Kelly McLendon, president of Health Information Xperts.
Detailed patient consent recommendations that a privacy and security "tiger team" recently completed are just a starting point toward giving patients far more control over their healthcare information, the co-chair of the team acknowledges.
Educating staff about keeping protected health information off social media should be a high priority, much like education about sexual harassment, discrimination or any other behavior with zero tolerance.
Just as most financial institutions have implemented security measures to protect access to customers' accounts and personal data, it is just a matter of time before healthcare organizations will be required to do the same.
The California state legislature has passed a stronger data breach notification bill that could mean increased consumer privacy protection for residents -- if Gov. Arnold Schwarzenegger signs it into law.
A committee that advises federal regulators on healthcare information technology policies has approved detailed recommendations for how and when to obtain patient consent for the exchange of their electronic health records.