In Cincinnati, one of the nation's oldest health information exchanges studies the best way to give patients control over their data. Meanwhile, in Washington state, pilot projects test the health record bank approach.
The Markle Foundation's "blue button" concept for enabling patients to download their records from a secure website is suitable for a wide variety of healthcare organizations, says Josh Lemieux, the foundation's director of personal health technology.
Detailed patient consent recommendations that a privacy and security "tiger team" recently completed are just a starting point toward giving patients far more control over their healthcare information, the co-chair of the team acknowledges.
Responding to market demand is ISACA, the non-profit security organization, which launched the Certified in Risk and Information Systems Control certification for IT risk professionals early this year.