Medical Record Contents

• Patient's name, address, age, next of kin, SSN
• Name of parents, date and place of birth
• Marital status, religion, military service
• Medical, social and family history
• Treatments, medications, diagnosis
• Findings, reactions, incidents
• Use of alcohol and tobacco

Risks of Misuse of Medical Data

• Improper treatment
• Loss of employment
• Loss of insurance
• Loss of privacy
• Reluctance to obtain medical care

Policy Context

• Rapid technological changes (smart cards)
• Growth of computer networking (information highway)
• Health care reform is (still) top legislative priority
• Public concern about privacy protection at all time high: 51% of
• Americans are "very concerned" about loss of privacy [Harris poll]

Key Policy Issues

• Protect privacy and security
• Enforce Code of Fair Information Practices
• Control secondary use
• Control use of identifier
• Ensure patient right of access
• Ensure oversight and enforcement

Privacy and Security

Security

• Protect system
• Prevent unauthorized use
• Prevent deliberate denial of service

Privacy

• Protect interests of data subject
• Ensure accuracy of data
• Ensure fairness, access for data subject

Code of Fair Information Practices

• Responsibility of data holders (health care organizations) to data subjects (patients)
• Limitations on disclosure and use
• Obligation to keep data timely, accurate, complete
• Obligation to inform data subject about use of personal information and provide opportunity to correct information
• Basis of most privacy codes and privacy laws

Control Secondary Use

• To other Health Data Organizations with comparable protection
• To individual
• To parents of minor child, guardians
• To researchers
• To practitioner with informed consent or without informed consent if life-threatening situation

Control Use of Identifier

Problems with Social Security Number (SSN)

• Private investigator: "If I have your SSN, I have everything"
• Imperfect identifier
• Facilitates matching between data sets
• Contributes to banking and credit fraud
• Leads to loss of control of information

Patient Rights of Access

• "The patient has the right to obtain from physician current information concerning diagnosis, treatment, and prognosis in terms the patient can understand" [AHA, AHIMA]
• Opportunity to ensure accuracy and verify changes
• Know what will be obtained by employers and insurance companies when release is authorized
• Analogy Ð Bank statement provides detailed record on financial transactions

Oversight and Enforcement

• Administrative practices
• Education and training
• Legal obligations
• Legal penalties
• Agencies and oversight

Administration's Privacy Goals (1993)

• Establish national privacy safeguards
• Establish effective mechanisms for enforcement
• Establish a Data Protection and Security Panel
• Establish an education and awareness program
• Strong privacy, confidentiality and security protection
• National standards for clinical and administrative data
• Uniform minimum health data sets with standard data items and
• definitions

AHIMA Privacy Policies

• Emphasize importance of patient record
• Promote patient access to record
• Provide notification of record use
• Develop standards for information practice
• Establish clear rules for use and disclosure
• Implement Model Guidelines

Legislation: HR 4077

• "Fair Medical Information Practices Act"
• Most ambitious privacy legislation in USA to date
• First comprehensive federal, medical privacy initiative since 1979
• Focus on responsibilities of data holders
• Incorporates many principles described above
• Linked to health care reform legislation
• Bill did not pass in 103rd Congress

New Challenges

• Databases (1970s) -> data networks (1990s)
• New technologies
• New applications
• New policies
• New issues
• New challenges

1970s Model

• Database containing personal information
• Articulate rights and responsibilities
• Emphasis on Code of Information Practices (ÒCFHIPÓ)
• Limitations on disclosure
• Controls on identifier (SSN)
• Private actions for enforcement

Problems with 1970s Model

• Enforcement of Code is critical
• "Race to the bottom," particularly in competitive markets
• Burden on individual to ensure enforcement
• Focus on regulation of data Ð containing risk Ð not system design

New Issues for the 1990s

• Growth of Data Networks
• "Technologies of privacy" (encryption). Who builds locks? Who controls keys?
• Identity, anonymity, and pseudonyms
• Data source identification
• Anticipate specific misuse: commercial sale, employment determination

Predictions

• Passage of federal medical privacy legislation before end of 1996
• Development of new technologies that raise new privacy issues (collection of genetic data, use of smart cards)
• Growing public concern about use and misuse of personal (1995 Harris poll - 55% very concerned?)
• Growing importance of organizations such as AHIMA in protecting privacy of medical record information

Bibliography

• Chaum, Achieving Electronic Privacy (Scientific American 1992)
• Records, Computers, and the Rights of Citizens (1973)
• Institute of Medicine, Health Data in the Information Age (1994)
• Office of Technology Assessment, Protecting Privacy in Computerized Medical Information (1993)
• Rotenberg, Medical Record Privacy, Journal of Health Politics, Policy and Law (1994)
• Westin, Health Information Privacy Survey (1993)
• The White House, The President's Health Security Plan (1993)

Return to the EPIC Medical Privacy Page

Return to the EPIC Privacy Page

Return to the EPIC Home Page