GENETIC INFORMATION IN ELECTRONIC HEALTH RECORDS AND NETWORKS Mark A. Rothstein, J.D. Herbert F. Boehl Chair of Law and Medicine Director, Institute of.

Slides:

Advertisements

Similar presentations

Legal Work Group Developing a Uniform EHR/HIE Patient Consent Form.

Advertisements

P E N N S Y L V A N I A C O A L I T I O N A G A I N S T D O M E S T I C V I O L E N C E P E N N S Y L V A N I A C O A L I T I O N A G A I N S T RAPE HIPAA.

HIPAA Governing Board Training September 28, 2006.

CHAPTER © 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2 The Use of Health Information Technology in Physician Practices.

Davis Wright Tremaine LLP Non-HIPAA Governmental Regulation of Healthcare Privacy and Security Sixteenth HIPAA Summit/The Privacy Symposium August 21,

HIPAA THE PRIVACY RULE Reviewed December HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti-

NCVHS: Privacy and Confidentiality Leslie P. Francis, Ph.D., J.D. Distinguished Professor of Law and Philosophy Alfred C. Emery Professor of Law University.

Health Insurance Portability and Accountability Act (HIPAA)

Information Sharing and Cross-System Collaboration John Petrila, J.D., LL.M. Professor, University of South Florida

Health Insurance Portability Accountability Act of 1996 HIPAA for Researchers: IRB Related Issues HSC USC IRB.

Health IT Privacy and Security Policy Jodi Daniel, J.D., M.P.H. Director, Office of Policy and Research, Office of the National Coordinator for Health.

Project Proposal to IHE: Implementation Guide for Data Segmentation For Privacy (DS4P) over REST Submitted by S&I Framework Data Segmentation for Privacy.

Incorporating Behavioral Health in the EHR to Improve Care Insitute of Medicine | November 25, 2013 Brigid McCaw, MD, MS, MPH, FACP Medical Director, Family.

Who Must Comply? When is a patient authorization NOT required?  As needed for the protection of federal and state elective constitutional officers and.

EMPLOYMENT LAW PROVISIONS OF THE GENETIC INFORMATION NONDISCRIMINATION ACT OF 2008 (GINA) Mark A. Rothstein, J.D. Herbert F. Boehl Chair of Law and Medicine.

GENETIC DISCRIMINATION IN A POST-GINA WORLD Mark A. Rothstein, J.D. Herbert F. Boehl Chair of Law and Medicine Director, Institute for Bioethics, Health.

© Copyright 2014 Saul Ewing LLP The Coalition for Academic Scientific Computation HIPAA Legal Framework and Breach Analysis Presented by: Bruce D. Armon,

2 HIPAA, HITECH, and Medical Records. Learning Outcomes When you finish this chapter, you will be able to: 2.1Discuss the importance of medical records.

Challenge of personalized health care: To what extent is medicine already individualized and what are the future trends? Author: Walter Fierz Presented.

Health Care Facilities

2 H. Westley Clark, M.D., J.D., M.P.H., CAS, FASAM Director Center for Substance Abuse Treatment Substance Abuse Mental Health Services Administration.

August 12, Meaningful Use *** UDOH Informatics Brown Bag Robert T Rolfs, MD, MPH.

Component 1: Introduction to Health Care and Public Health in the U.S. 1.5: Unit 5: Financing Health Care (Part 2) 1.5d: Controlling Medical Expenses.

The University of Kansas Medical Center Shadow Experience Training.

HIT Policy Committee Accountable Care Workgroup – Kickoff Meeting May 17, :00 – 2:00 PM Eastern.

Lecture 14 Policy, Legal, and Regulatory Issues in HIS (Chapters 18,19,20)

The Use of Health Information Technology in Physician Practices

NAPHSIS Annual Meeting 2009 Electronic Health Records: Why are they important? Linette T Scott, MD, MPH Deputy Director Health Information and Strategic.

1 Health Information Security and Privacy Collaboration (HISPC) National Conference HISPC Contributions to Massachusetts HIE Privacy and Security Progress:

Introduction to Public Health Informatics and their Applications August 27, 2015 Francis B Annor Georgia Department of Public Health.

HITSP’s Scope  The Panel’s mission is to assist in the development of a Nationwide Health Information Network (NHIN) by addressing the standards-related.

Update on Federal HIT Legislation Kirsten Beronio Mental Health America.

Computerized Networking of HIV Providers Workshop Data Security, Privacy and HIPAA: Focus on Privacy Joy L. Pritts, J.D. Assistant Research Professor Health.

HIT Standards Committee Privacy and Security Workgroup: Initial Reactions Dixie Baker, SAIC Steven Findlay, Consumers Union June 23, 2009.

Chapter 2 Standards for Electronic Health Records McGraw-Hill/Irwin Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved.

Chapter 6 – Data Handling and EPR. Electronic Health Record Systems: Government Initiatives and Public/Private Partnerships EHR is systematic collection.

American Recovery and Reinvestment Act: Summary of Health-related Provisions April 15, 2009.

Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved. Ch 8 Privacy Law and HIPAA.

S. Lee Woods, M.D., Ph.D. Director, Office of Surveillance and Quality Initiatives Maternal and Child Health Bureau Prevention and Health Promotion Administration.

Blueprint Integrated Pilot Programs A community system of health supported by HIT Craig Jones MD Director, Vermont Blueprint for Health

Patient Confidentiality and Electronic Medical Records Ann J. Olsen, MBA, MA Information Security Officer and Director, Information Management Planning.

HIPAA THE PRIVACY RULE. 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti- depressant medications.

Copyright ©2014 by Saunders, an imprint of Elsevier Inc. All rights reserved 1 Chapter 02 Compliance, Privacy, Fraud, and Abuse in Insurance Billing Insurance.

Health Information Technology EHR Meaningful Use Milestones for HIT Funding Michele Madison

TISSUE REPOSITORIES: THE COMMON RULE and THE HIPAA PRIVACY RULE Mark A. Rothstein, J.D. Herbert F. Boehl Chair of Law and Medicine Director, Institute.

Accountable Care Organizations: What is the role of the pathologist? What are the public policy implications?

Health Management Information Systems Unit 3 Electronic Health Records Component 6/Unit31 Health IT Workforce Curriculum Version 1.0/Fall 2010.

1 Changes to Privacy Regulations under ARRA May 4, 2009 Melissa Goldstein, J.D. The George Washington University School of Public Health and Health Services.

Overview of ONC Report to Congress on Health Information Blocking Presented to the Health IT Policy Committee, Task Force on Clinical, Technical, Organizational,

CH 10. Confidentiality A. Confidentiality about sensitive medical information is necessary to preserve the patient’s dignity. B. In order to receive payment.

Confidentiality of Substance Use Disorder Treatment Information in an Era of Integration and Health Information Exchanges Ellen Weber University of Maryland.

THE UNITED STATES HEALTH CARE SYSTEM Combining Business, Health, and Delivery CHAPTER Copyright ©2012 by Pearson Education, Inc. All rights reserved. The.

Office of the Secretary Office for Civil Rights (OCR) Enforcement and Policy Challenges in Health Information Privacy Linda Sanches HIPAA Summit Special.

Health Insurance Portability and Accountability Act (HIPAA) © 2013 Project Lead The Way, Inc.Principles of Biomedical Science.

Disclaimer This presentation is intended only for use by Tulane University faculty, staff, and students. No copy or use of this presentation should occur.

Interoperability Measurement for the MACRA Section 106(b) ONC Briefing for HIT Policy and Standards Committee April 19, 2016.

Health Insurance Portability and Accountability Act

Electronic Health Records (EHR)

Chapter 2 Health Care Systems.

Health Information Security and Privacy Collaborative (HISPC) Overview

Health Insurance Portability and Accountability Act

Health Advocate HIPAA Privacy Information

TRICARE Online Patient Portal

Introduction to General Medical Conditions

Enforcement and Policy Challenges in Health Information Privacy

Objectives Describe the purposes of the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 Explore how the HITECH Act.

Component 1: Introduction to Health Care and Public Health in the U.S.

Non-HIPAA Governmental Regulation of Healthcare Privacy and Security

Regulatory Perspective of the Use of EHRs in RCTs

Presentation transcript:

GENETIC INFORMATION IN ELECTRONIC HEALTH RECORDS AND NETWORKS Mark A. Rothstein, J.D. Herbert F. Boehl Chair of Law and Medicine Director, Institute of Bioethics, Health Policy and Law University of Louisville School of Medicine © 2009

FOCUS OF THIS TALK I.Changes in the quantity and quality of genetic information in health records. II.Characteristics of the emerging Nationwide Health Information Network. III.Uses and disclosures of health information beyond health care settings.

I.GENETIC INFORMATION TRADITIONALLY CONTAINED IN PAPER HEALTH RECORDS Family health history (3 generations if possible) Medical geneticMendelian disorders in informationaffected families (e.g., test results, counseling records, diagnostic, treatment)

GENETIC INFORMATION INCREASINGLY FOUND IN ELECTRONIC HEALTH RECORDS Complex disorders E.g., cancer, heart disease Genomic information genetic tests GWAS Pharmacogenomics Drug selection and dosing Toxicogenomics Risk assessment and medical monitoring

VALUE OF ELECTRONIC HEALTH RECORDS TO CLINICAL GENETICS 1.There are only about 1,500 active board-certified clinical geneticists and 2,000 board- certified genetic counselors. 2.Most primary care physicians lack the training or expertise in genetics.

3.EHRs can help standardize and organize pedigree and other data collection. 4.EHRs can provide essential clinical decision support.

II.NATIONWIDE HEALTH INFORMATION NETWORK Network of networks Interoperable Longitudinal Comprehensive

ADVANTAGES OF THE NHIN 1.Enhance coordination of care 2.Avoid duplication of services 3.Improve effectiveness of care 4.Improve efficiency of care 5.Facilitate outcomes and other research

DISADVANTAGE OF THE NHIN (FOR PRIVACY) It eliminates the chaos of disaggregated, unconnected, fragmented, and largely paper-based health records.

KEY PRIVACY ISSUES TO BE RESOLVED Should patients be allowed to control access to their records? Should patients be allowed to control the content of their records?

No: It will make record management more difficult and it will undermine the integrity and completeness of the records.

Yes: 1. Unless individuals can control the content of their records, they will opt-out of the NHIN. 2.Much sensitive health information is not needed for current health care needs. 3.If patients fear a loss of privacy, they might refuse to seek care for these conditions, thereby endangering themselves and possibly the public.

Should any special protections be put in place for certain classes of sensitive medical information, such as mental health, substance abuse, STDs, genetic test results, etc.?

NCVHS (Feb. 2008): “The design of the NHIN should permit patients to elect to sequester sensitive health information in one or more predefined categories.”

Some examples of categories for consideration: Domestic violence information Genetic information Mental health information Reproductive health information Substance abuse information

AMERICAN RECOVERY AND REVINVESTMENT ACT (2009) (i)Technologies that protect the privacy of health information and promote security in a qualified electronic health record, including for the segmentation... Title XIII. Health Information Technology for Economic and Clinical Health Act (HITECH Act) Section – HIT Policy Committee – Areas for Consideration

... and protection from disclosure of specific and sensitive individually identifiable health information with the goal of minimizing the reluctance of patients to seek care (or disclose information about a condition) because of privacy concerns, in accordance with applicable law, and for the use and disclosure of limited data sets of such information.” ARRA § 3002(b)(2)(i).

OTHER QUESTIONS TO RESOLVE RELATED TO SEQUESTERED HEALTH INFORMATION CLINICAL DECISION SUPPORT (Should it scan sequestered information?) EMERGENCY ACCESS (How would a “break the glass” feature work?) NOTATIONS TO PHYSICIANS (Should they identify the category?)

HIPAA PRIVACY RULE 1.Only designed to protect health information in the payment chain. 2.No federal enforcement or private remedies. 3.Without comprehensive health privacy legislation, the NHIN will diminish current (indirect) privacy protections.

SOME NON-COVERED HEALTH-CARE PROVIDERS Athletic trainers Blood banks “Concierge” physicians Cosmetic medicine Employer health clinics Health and fitness clubs Home testing laboratories Nutritional counselors Reproductive health services Urgent care facilities

III.DISCLOSURES BEYOND HEALTH CARE SETTINGS

Each year in the U.S. there are about 25 million authorizations for the compelled disclosure of health records in various contexts, such as the following: Employment entrance examinations (10.2 M) Individual life insurance applications (6.8 M) Individual health insurance applications Individual long-term care insurance applications Individual disability insurance applications

Individual and group disability insurance claims Automobile insurance personal injury claims Social Security Disability Insurance applications Workers’ compensation claims Veterans’ disability claims Personal injury lawsuits

For the vast majority of these authorizations, there are no limits placed on the scope of the information disclosed. Even where there are limits, in a paper-based health records system there is no practical way to limit the scope of the disclosure. So, custodians of the records send everything.

Today, “everything” means all the records from a single provider or entity. With the NHIN, tomorrow’s “everything” means everything from everybody.

Contextual access criteria technology could limit the scope of these compelled disclosures. NCVHS recommended in 2006 that HHS begin development of these tools. So far, there has been no progress.

CONCLUSION The combination of more genetic information with EHRs and EHR networks presents a great challenge for health privacy.