HIT Usability and Data Breaches. Ritu Agarwal University of Maryland

Similar documents
The Impact of CPOE and CDS on the Medication Use Process and Pharmacist Workflow

The future of patient care. 6 ways workflow automation will transform the healthcare experience

How will the system be used? Small practice Large Multispecialty group How well do the workflows and content

Mandatory Reporting and Breach Notification Changes to PHIPA and what you need to know

How will the system be used? Small practice Large Multispecialty group How well do the workflows and content represent your specialty and care

Security Risk Analysis and 365 Days of Meaningful Use. Rodney Gauna & Val Tuerk, Object Health

A general review of HIPAA standards and privacy practices 2016

Patient s Guide to The Waiting Room. Version 1.1 Date: 17-Feb-17

A complete step by step guide on how to achieve Meaningful Use Core Set Measures in Medgen EHR.

LifeBridge Health HIPAA Policy 4. Uses of Protected Health Information for Research

Cognitive Level Certified Professional in Patient Safety Detailed Content Outline Recall. Total. Application Analysis 1.

The Road to Clinical Transformation

Unique Health Safety Identifier. Across The Continuum of Care

Component Description Unit Topics 1. Introduction to Healthcare and Public Health in the U.S. 2. The Culture of Healthcare

Value of HIT. Pat Wise VP, Health Information Systems HIMSS North America June 21, 2017

Health Information Exchange 101. Your Introduction to HIE and It s Relevance to Senior Living

E.H.R. s and Improving Patient Safety - What Has Been the Real Impact?

Using Innovation to Advance Interoperability

-Health Update. Encounter Notification System (ENS) Celebrates Five Years! Welcome

MEDICARE CCLF ANALYTICS: MEDICARE ANALYTICS DATA ENGINE (MADE)

Practice Director Modified Stage MU Guide 03/17/2016

1/21/2011. Cindy C. Parman, CPC, CPC H Coding Strategies, Inc.

Patient-Centered Connected Care 2015 Recognition Program Overview. All materials 2016, National Committee for Quality Assurance

POLICY AND PROCEDURE DEPARTMENT: Pharmacy Operations

A Better Prescription for Reducing Medication Errors and Maximizing the Value of Clinical Decision Support

2011 Electronic Prescribing Incentive Program

Nursing and Information. Technology. What is Information Technology? Objectives. MNDAKSPAN Winter Conference. Karen Jones, RN, BSN, MS

POLICY AND PROCEDURE DEPARTMENT: Pharmacy Operations

Guidance for Medication Reconciliation and System Integration Process

Technology Standards of Practice

Essential Characteristics of an Electronic Prescription Writer*

Minnesota Nursing Homes e-health Report, 2016

MEDICARE CCLF ANALYTICS: MEDICARE ANALYTICS DATA ENGINE (MADE)

EAST CALDER & RATHO MEDICAL PRACTICE YOUR INFORMATION

Medication Module Tutorial

Admission Medication History and Reconciliation Documentation. Froedtert Hospital, Milwaukee WI

Medication Management and Use. Anadolu Medical Center. August, Departman Tarih

Go! Guide: Medication Administration

Healthcare Privacy Officer on Evaluating Breach Incidents A look at tools and processes for monitoring compliance and preserving your reputation

FOUR TIPS: THE INVISIBLE IMPACT OF CREDENTIALING

InstyMeds Prescription Writer Tutorial

RED SIGNAL REPORTSM RADIOLOGY. August 2018 Vol. 1 No. 1. Claims Data Signals & Solutions to Reduce Risks and Improve Patient Safety.

TrakCare Overview. Core Within TrakCare. TrakCare Foundations

HIPAA Privacy & Security

MEANINGFUL USE & RISK ASSESSMENT

E-Prescribing: What Is It? Why Should I Do It? What's in the Future?

1. What are the requirements for Stage 1 of the HITECH Act for CPOE to qualify for incentive payments?

Data Sharing Consent/Privacy Practice Summary

NYS E-Prescribing Mandate

INTERGY MEANINGFUL USE 2014 STAGE 1 USER GUIDE Spring 2014

Frequently Asked Questions. Inofile FAQs

Consumer View of Personal Information Risks

Florida Center for Cybersecurity Collaborative Seed Award Program

Meaningful Use and Care Transitions: Managing Change and Improving Quality of Care

In-Patient Medication Order Entry System - contribution of pharmacy informatics

Meaningful Use Modified Stage 2 Roadmap Eligible Hospitals

Patient Centered Medical Home 2011

during the EHR reporting period.

FCSRMC 2017 HIPAA PRESENTATION

Prescription Writer/ eprescribe

CIO Legislative Brief

Mercy Clinical Pathways Improving Quality and Cost

Transforming Care in the NHS through Digital Technology

Policies Approved by the 2017 ASHP House of Delegates

PRIVACY BREACH GUIDELINES

Initial Commentary on Meaningful Use Final Rule

Breach Reporting and Safeguarding PHI Outpatient Services August, UAMS HIPAA Office Anita Westbrook

NIMRS Incident Reporting Changes Effective June 30 th 2013

Ophthalmology Meaningful Use Attestation Guide 2016 Edition Updated July 2016

Measuring Digital Maturity. John Rayner Regional Director 8 th June 2016 Amsterdam

Electronic Prescribing (erx): The Pros and Cons. Richard Kalish, MD, MPH Medical Director Boston HealthNet August 13, 2009

Session #3. Advancing Hospital to Home Connectivity: A Work in Progress Minnesota e-health Summit June 7, 2016

Using Trustwave SEG Cloud with Exchange Server

INSTITUTIONAL REVIEW BOARD Investigator Guidance Series HIPAA PRIVACY RULE & AUTHORIZATION THE UNIVERSITY OF UTAH. Definitions.

Medicaid EHR Incentive Program Survey of Registrants 2015 Summary of Findings

Speare Memorial Hospital myspeare Patient Portal User Guide

Value-based Care and the Role of Health Information Technology. Andrew Hamilton, RN, BS, MS, Chief Informatics Officer

The Impact of New Technology in Health Care on Privacy

COMPUTERIZED PHYSICIAN ORDER ENTRY (CPOE)

Webinar #5 Meaningful Use: Looking Ahead to Stage 2 and CPS 12

HIPAA Privacy & Security Training

Executive Summary: Davies Ambulatory Award Community Health Organization (CHO)

[Enter Organization Logo] CONSENT TO DISCLOSE HEALTH INFORMATION UNDER MINNESOTA LAW. Policy Number: [Enter] Effective Date: [Enter]

ACO Practice Transformation Program

Quanum Electronic Health Record Frequently Asked Questions

The types and causes of prescribing errors generated from electronic prescribing systems: a systematic review

ERIE COUNTY MEDICAL CENTER CORPORATION NOTICE OF PRIVACY PRACTICES. Effective Date : April 14, 2003 Revised: August 22, 2016

Table of Contents OVERVIEW... 3 LOG IN... 4 ALLERGY MAINTENANCE... 5 ADD A DEFAULT PHARMACY... 6

Supporting The Joint Commission 2012 Standards and National Patient Safety Goals

Meaningful Use Hello Health v7 Guide for Eligible Professionals. Stage 1

INTERGY MEANINGFUL USE 2014 STAGE 2 USER GUIDE Spring 2014

Automation and Information Technology

Diabetes Eye Screener / Photographer Job Description

State Policy in Practice

Response to a Medication Error Tragedy and the Development of a Patient Safety Program. Dana-Farber Cancer Institute

2018 HCCA Compliance Institute HIPAA Update: Policy & Enforcement. Policy Update: Marissa Gordon-Nguyen HHS OCR Senior Advisor

Consumers can t keep up with rising costs of medications

The History of Meaningful Use

Prepublication Requirements

SFHPHARM27 - SQA Unit Code FA2P 04 Undertake an in-process accuracy check of assembled prescribed items prior to the final accuracy check

Transcription:

HIT Usability and Data Breaches Ritu Agarwal University of Maryland

Digital Vulnerabilities Private medical data for 20,000 emergency room patients at Stanford Hospital exposed to the public for nearly a year (Oct. 2011) Do you know where your health information is? 2

A Problem of Some Magnitude Health care identity theft dominated all other crimes in the sector in 2010: 100 billion a year As the infusion of health IT accelerates, so do the associated vulnerabilities 3

Breaches By The Numbers In 2010, across the 207 breaches that affected 500 or more individuals: 99 incidents involved theft of paper records or electronic media, together affecting approximately 3M Loss of electronic media or paper records affected 1.1M individuals Unauthorized access to, or uses or disclosures of PHI information affected approximately 1M individuals. Human or technological errors affected almost 80K individuals. Improper disposal of paper affected approximately 70K individuals. Source: Annual Report to Congress on Breaches of Unsecured Protected Health Information; 2012 HIMSS Analytics Report: Security of Patient Data 4

Why Data Are At Risk Source: 2012 HIMSS Analytics Report: Security of Patient Data 5

The Usability of Health IT The SHARP C project (ONC): Usability based on the TURF (Task, User, Representation, and Function) framework Supports work domain Useful Contains essential functions Usable Easy to learn and use Error tolerant Satisfying Perceptions of system usefulness Likeability of a system 6

EHR Usability Breakdowns Poor organization and display of information Increases in cognitive burden Interference with practice workflow Potential for Data Breaches Poor design of system functions 7

Usability and EHRs EHR Capability Across all functionalities Health Information and Data Management Order Entry Management Results Management Usability Issue Illustrations Excessive layers of screens and click through increase burden and disrupt the workflow. Practice workflows that are not aligned to support efficient and effective use of the technology. Lack of options for structured data entry may increase workload and affect data quality. Excessive use of defaults, templates, and copying may affect data quality and increase potential for fraud and abuse. Prescribing systems that are not integrated with other parts of the EHR system, for example, with preferred formulary lists, pharmacy database, and clinical decision support systems. Failure to present results information to match the physician s cognitive pattern; for example, the system only lists test results alphabetically, whereas physicians may prefer chronological or clustered by clinical relevance or by severity. Failure to warn if a patient has missed a test. Use of lists that require scrolling. 8

Usability and EHRs EHR Capability Clinical Decision Support Usability Issue Illustrations Decision support systems that do not allow the filtering of certain alerts that the clinician may find inconvenient or not clinically useful based on their practice setting (e.g., certain drug drug interactions, or excluding certain drug allergy cross sensitivity rules). Alerts that are not accompanied with appropriate visual cues, such as based on severity. The lack of integration between dual systems in order to complete a recommended action; for example, the decision support system recommends an alternate drug dose, but does not integrate with the e prescription system to provide for easy selection and ordering of the recommended drug. Patient Support Lack of ability to provide patient education materials in plain English. Administrative Processes Lack of integration with administrative systems, such as billing and scheduling. 9

Securing Healthcare Data Technology Firewalls Proxy servers Biometrics VPNs USABILITY.. Process Restrict and monitor use Password rules Predictive models of threat ADAPTIVE ROUTINIZATION... People Security training Awareness Recruitment SYMBOLIC EXPRESSIONS Usable technology that is congruent with workflow, aligns with work processes, and is supported by training and education 10

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback