scholarly journals Doctors Routinely Share Health Data Electronically Under HIPAA, and Sharing With Patients and Patients’ Third-Party Health Apps is Consistent: Interoperability and Privacy Analysis (Preprint)

2020 ◽  
Author(s):  
Mark Savage ◽  
Lucia Clara Savage
Keyword(s):  
Information Exchange ◽  
State Of The Art ◽  
Digital Health ◽  
Health Data ◽  
Third Party ◽  
Health It ◽  
Basic Principles ◽  
Health Records ◽  
Health Apps ◽  
Shared Information

UNSTRUCTURED Since 2000, federal regulations have affirmed that patients have a right to a complete copy of their health records from their physicians and hospitals. Today, providers across the nation use electronic health records and electronic information exchange for health care, and patients are choosing digital health apps to help them manage their own health and health information. Some doctors and health systems have voiced concern about whether they may transmit a patient’s data upon the patient’s request to the patient or the patient’s health app. This hesitation impedes shared information and care coordination with patients. It impairs patients’ ability to use the state-of-the-art digital health tools they choose to track and manage their health. It undermines the ability of patients’ family caregivers to monitor health and to work remotely to provide care by using the nearly unique capabilities of health apps on people’s smartphones. This paper explains that sharing data electronically with patients and patients’ third-party apps is legally consistent under the Health Insurance Portability and Accountability Act (HIPAA) with routine electronic data sharing with other doctors for treatment or with insurers for reimbursement. The paper explains and illustrates basic principles and scenarios around sharing with patients, including patients’ third-party apps. Doctors routinely and legally share health data electronically under HIPAA whether or not their organizations retain HIPAA responsibility. Sharing with patients and patients’ third-party apps is no different and should be just as routine.

scholarly journals Doctors Routinely Share Health Data Electronically Under HIPAA, and Sharing With Patients and Patients’ Third-Party Health Apps is Consistent: Interoperability and Privacy Analysis

10.2196/19818 ◽  
2020 ◽  
Vol 22 (9) ◽  
pp. e19818
Author(s):  
Mark Savage ◽  
Lucia Clara Savage
Keyword(s):  
Information Exchange ◽  
State Of The Art ◽  
Digital Health ◽  
Health Data ◽  
Third Party ◽  
Health It ◽  
Basic Principles ◽  
Health Records ◽  
Health Apps ◽  
Shared Information

Since 2000, federal regulations have affirmed that patients have a right to a complete copy of their health records from their physicians and hospitals. Today, providers across the nation use electronic health records and electronic information exchange for health care, and patients are choosing digital health apps to help them manage their own health and health information. Some doctors and health systems have voiced concern about whether they may transmit a patient’s data upon the patient’s request to the patient or the patient’s health app. This hesitation impedes shared information and care coordination with patients. It impairs patients’ ability to use the state-of-the-art digital health tools they choose to track and manage their health. It undermines the ability of patients’ family caregivers to monitor health and to work remotely to provide care by using the nearly unique capabilities of health apps on people’s smartphones. This paper explains that sharing data electronically with patients and patients’ third-party apps is legally consistent under the Health Insurance Portability and Accountability Act (HIPAA) with routine electronic data sharing with other doctors for treatment or with insurers for reimbursement. The paper explains and illustrates basic principles and scenarios around sharing with patients, including patients’ third-party apps. Doctors routinely and legally share health data electronically under HIPAA whether or not their organizations retain HIPAA responsibility. Sharing with patients and patients’ third-party apps is no different and should be just as routine.

scholarly journals A Comparative Study of Bluetooth SPP, PAN and GOEP for Efficient Exchange of Healthcare Data

2021 ◽  
Vol 5 (3) ◽  
pp. 279-293
Author(s):  
Athanasios Kiourtis ◽  
Argyro Mavrogiorgou ◽  
Dimosthenis Kyriazis
Keyword(s):  
Information Exchange ◽  
Data Exchange ◽  
Health Information Exchange ◽  
State Of The Art ◽  
Communication Technologies ◽  
Health Data ◽  
Third Party ◽  
Healthcare Data ◽  
Efficient Data ◽  
Distance Communication

Objectives: Current research aims to address the challenges of exchanging healthcare information, since when this information has to be shared, this happens by specifically designed medical applications or even by the patients themselves. Among the problems that the Health Information Exchange (HIE) initiative is facing are that (i) third party health data cannot be accessed without internet, (ii) there exist crucial delays in accessing citizens’ data, (iii) the direct HIE can only happen among Healthcare Institutions. Methods: Towards the solution of these issues, a Device-to-Device (D2D) protocol has been specified, running on top of the Bluetooth protocol for efficient data exchange. This research is focused on this D2D protocol, by comparing the different Bluetooth profiles that can be used for transmitting this data, based on specific metrics considering the probabilities of transferring erroneous data. Findings: An evaluation of three Bluetooth profiles takes place, concluding that two of the three profiles must be used to respect the D2D protocol nature and be fully supported by the main market vendors’ operating systems. Novelty:Based on this evaluation, the specified D2D protocol has been built on top of state-of-the-art short-range distance communication technologies, fully supporting the healthcare ecosystem towards the HIE paradigm. Doi: 10.28991/esj-2021-01276 Full Text: PDF

A Viewpoint of Security for Digital Health Care in the United States

2014 ◽  
Vol 2 (1) ◽  
pp. 1-21 ◽  
Author(s):  
Steven A. Demurjian ◽  
Alberto De la Rosa Algarín ◽  
Jinbo Bi ◽  
Solomon Berhe ◽  
Thomas Agresta ◽  
...  
Keyword(s):  
United States ◽  
Health Care ◽  
Health Information ◽  
Information Exchange ◽  
Digital Health ◽  
The United States ◽  
Hard Copy ◽  
Health Providers ◽  
Patient Portals ◽  
Health Records

In health care, patient information of interest to health providers, researchers, public health researchers, insurers, patients, etc., is stored in different locations via electronic media and/or hard-copy formats. All potential users need electronic access to health information technology systems such as: electronic health records, personal health records, patient portals, and ancillary systems such as imaging, laboratory, pharmacy, etc. Controlling access to information from multiple systems requires granularity levels of privileges ranging from one patient to a cohort to an entire population. In this paper, we present a viewpoint of the state of secure digital health care in the United States, focusing on the resources that need to be protected as dictated by legal entities and regulations, the available approaches in the present state-of-the art, and, the potential needs for the future of security for digital health care. By utilizing a real world scenario, the authors explore the limitations of health information exchange in the United States, and present one possible architecture for secure digital health care that builds on existing technology alternatives.

Exploring Type-and-Identity-Based Proxy Re-Encryption Scheme to Securely Manage Personal Health Records

2010 ◽  
Vol 1 (2) ◽  
pp. 1-21
Author(s):  
Luan Ibraimi ◽  
Qiang Tang ◽  
Pieter Hartel ◽  
Willem Jonker
Keyword(s):  
Access Control ◽  
Health Data ◽  
Third Party ◽  
Personal Health ◽  
Encryption Scheme ◽  
Health Records ◽  
Web Based ◽  
The Third ◽  
Access Control Policies ◽  
Identity Based

Commercial Web-based Personal-Health Record (PHR) systems can help patients to share their personal health records (PHRs) anytime from anywhere. PHRs are very sensitive data and an inappropriate disclosure may cause serious problems to an individual. Therefore commercial Web-based PHR systems have to ensure that the patient health data is secured using state-of-the-art mechanisms. In current commercial PHR systems, even though patients have the power to define the access control policy on who can access their data, patients have to trust entirely the access-control manager of the commercial PHR system to properly enforce these policies. Therefore patients hesitate to upload their health data to these systems as the data is processed unencrypted on untrusted platforms. Recent proposals on enforcing access control policies exploit the use of encryption techniques to enforce access control policies. In such systems, information is stored in an encrypted form by the third party and there is no need for an access control manager. This implies that data remains confidential even if the database maintained by the third party is compromised. In this paper we propose a new encryption technique called a type-and-identity-based proxy re-encryption scheme which is suitable to be used in the healthcare setting. The proposed scheme allows users (patients) to securely store their PHRs on commercial Web-based PHRs, and securely share their PHRs with other users (doctors).

scholarly journals The Quantified Woman: Exploring Perceptions on Health App Use among Austrian Females of Reproductive Age

2020 ◽  
Vol 1 (2) ◽  
pp. 132-141
Author(s):  
Daniela Haluza ◽  
Isabella Böhm
Keyword(s):  
Interpersonal Communication ◽  
Health Data ◽  
Reproductive Age ◽  
Third Party ◽  
Security And Privacy ◽  
Quantified Self ◽  
Perceived Benefits ◽  
Public Health Perspective ◽  
Cross Sectional ◽  
Health Apps

Smartphones have become the most important commodity for today’s digitalized society. Besides direct interpersonal communication, their most used features are third-party applications (apps). Apps for monitoring health parameters (health apps) are extremely popular, and their users are part of the Quantified Self movement. Little knowledge is available on how health apps are perceived by a female target audience, the Quantified Woman. We conducted a study among Austrian females of reproductive age (n = 150) to analyze prevalence, perceived benefits, and readiness for health app use. In the cross-sectional online German survey, nearly all participants used these apps (98.0%), predominantly for monitoring physical activity and female health (both 31.3%). For the latter, participants used a large variety of different apps for monitoring contraception and menstruation. Perceived benefits and readiness of health app use were only of medium range. Our study assessed aspects of health app use in an understudied segment of the general population. From a Public Health perspective, the Quantified Woman could be empowered by health data collection by enabling her to take active control over how her health graphs develop. We suggest assuring data security and privacy for sensitive female health data collected by health apps.

It’s Time for Health Record Banking!

2014 ◽  
Vol 53 (02) ◽  
pp. 63-65 ◽  
Author(s):  
A. Shabo Shvo
Keyword(s):  
Health Information ◽  
Information Exchange ◽  
Health Information Exchange ◽  
State Of The Art ◽  
The State ◽  
Lessons Learned ◽  
Health Record ◽  
Health Records

SummaryThis article is part of a Focus Theme of Methods of Information in Medicine on Health Record Banking. This Focus Theme aims at describing the Health Record Banking (HRB) paradigm, which offers an alternative constellation of health information exchange and integration through sustainability of health records over the lifetime of individuals by independent and trusted organizations.It also aims at describing various approaches to HRB and reporting on the state-of-the-art HRB through actual implementations and lessons learned, as described in articles of this Focus Theme.

scholarly journals Privacy Preserving Analytics in Outsourced Healthcare System

2020 ◽  
Vol 9 (9) ◽  
pp. 329-333
Keyword(s):  
Healthcare System ◽  
Cloud Storage ◽  
Learning Algorithm ◽  
Homomorphic Encryption ◽  
Digital Health ◽  
Health Data ◽  
Third Party ◽  
Sensitive Data ◽  
Data Intensive ◽  
Cloud Server

The most data intensive industry today is the healthcare system. The advancement in technology has revolutionized the traditional healthcare practices and led to enhanced E-Healthcare System. Modern healthcare systems generate voluminous amount of digital health data. These E-Health data are shared between patients and among groups of physicians and medical technicians for processing. Due to the demand for continuous availability and handling of these massive E-Health data, mostly these data are outsourced to cloud storage. Being cloud-based computing, the sensitive patient data is stored in a third-party server where data analytics are performed, hence more concern about security raises. This paper proposes a secure analytics system which preserves the privacy of patients’ data. In this system, before outsourcing, the data are encrypted using Paillier homomorphic encryption which allows computations to be performed over encrypted dataset. Then Decision Tree Machine Learning algorithm is used over this encrypted dataset to build the classifier model. This encrypted model is outsourced to cloud server and the predictions about patient’s health status is displayed to the user on request. In this system nowhere the data is decrypted throughout the process which ensures the privacy of patients’ sensitive data.

scholarly journals A Blockchain-Based Distributed Authentication System for Healthcare

2021 ◽  
Vol 16 (4) ◽  
pp. 1-14
Author(s):  
Soumyashree S. Panda ◽  
Debasish Jena ◽  
Priti Das
Keyword(s):  
Health Information ◽  
Information Exchange ◽  
Digital Health ◽  
Security Requirements ◽  
Security And Privacy ◽  
Health Records ◽  
Secure Information ◽  
Efficient Information ◽  
Authentication System ◽  
And Performance

The use of digital health records, stricter health laws and the growing need for health records exchange points towards the need for an efficient security and privacy preserving mechanism. For Health Insurance management systems, multiple entities exchange health information which is used for decision making. Since multiple authoritative entities are involved, a secure and efficient information sharing protocol is required as extremely sensitive health information is exchanged among the entities. Hence this paper aims to put forward a novel a decentralized authentication system based on Blockchain known as Insurance Claim Blockchain (ICBChain) system. The proposed system ensures privacy of patients, provides secure information exchange and authentication of entities. An implementation of the proposed system is provided using Ethereum Blockchain. The security and performance analysis of the system shows its potential to satisfy Healthcare security requirements and its efficiency respectively

scholarly journals Factors associated with willingness to share health information: A rapid review (Preprint)

2020 ◽  
Author(s):  
Iffat Naeem ◽  
Hude Quan ◽  
Shaminder Singh ◽  
Nashit Chowdhury ◽  
Mohammad Chowdhury ◽  
...  
Keyword(s):  
Electronic Health Records ◽  
Conceptual Framework ◽  
Information Sharing ◽  
Health Information ◽  
Information Exchange ◽  
Health Data ◽  
Rapid Review ◽  
Health Records ◽  
Factors Associated ◽  
Health Information Sharing

BACKGROUND In order to expand research and strategies to prevent disease, comprehensive and real time data is essential. Health data is increasingly available from platforms such as pharmaceuticals, genomics, healthcare imaging, medical procedures, wearable devices, and internet activity. Further, health data is integrated with an individual’s sociodemographic information, medical conditions, genetics, treatments, and healthcare. Ultimately, health information generation and flow are controlled by the patient or participant; however, there is a lack of understanding about the factors that influence willingness to share health information. A synthesis of current literature on the multifactorial nature of health information sharing preferences is required to understand health information exchange. OBJECTIVE The objectives of this review are to: 1) identify peer-reviewed literature that reported factors associated with health information sharing; 2) organize factors into cohesive themes, and present the synthesis in a conceptual framework of factors related to willingness to share health information. METHODS This review uses a rapid review methodology to gather literature regarding willingness to share health information within the context of eHealth, which includes electronic health records, personal health records, and mobile health information, general health information, or information on social determinants of health. Medline and Google Scholar was search using keywords such as “electronic health records” AND “data sharing” OR “sharing preference” OR “willingness to share”. The search was limited to any population that excluded healthcare workers or practitioners, and the participants aged 18 years or older within the USA or Canadian context. The data abstraction process utilizing thematic analysis where any factors associated with sharing health information were highlighted and coded inductively within each article. Based on shared meaning, the coded factors were collated into major themes. RESULTS Twenty-seven research articles met our inclusion criteria and were included in the qualitative analysis. The inductive thematic coding process revealed multiple major themes related to sharing health information. The themes informed a conceptual framework that outlines 3 domains associated with sharing health information from the patient or participant perspective: 1) sociodemographic factors; 2) cognitive factors; 3) contextual factors. CONCLUSIONS This review emphasized the importance of data generators' viewpoints and the complex systems of factors that shape their decision to share health information. The conceptual framework introduced in this report can be used as a tool to engage participants to develop effective information exchange partnerships. In the case of improving precision healthcare, addressing the factors presented here that influences willingness to share information can improve sharing capacity for individuals and allow researchers to re-orient their methods to address hesitation in sharing health information.

Sign in / Sign up

Export Citation Format

Share Document