Opportunities and Challenges of Using Electronic Health Records to Enhance Patient Care Dr Amir Hannan Full-time General Practitioner Primary Care IT lead,

Slides:



Advertisements
Similar presentations
Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.
Advertisements

NATIONAL INFORMATION GOVERNANCE BOARD
Introduction to Information Governance (IG)
TEAM 4 Case Study Mauritius: Mrs Nandini Kissoon-Luckputtya
The Empowered Patient – involved in his / her care and medical record Dr Amir Hannan Full-time General Practitioner, Haughton Thornley Medical Centres,
The Data Protection (Jersey) Law 2005.
Workshop 501 and 505 Review barriers to communication
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
1 Pertemuan 7 Points of Exposure Matakuliah:A0334/Pengendalian Lingkungan Online Tahun: 2005 Versi: 1/1.
Promoting Excellence in Family Medicine Enabling Patients to Access Electronic Health Records Guidance for Health Professionals.
Property of Common Sense Privacy - all rights reserved THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.
PHTR 498 Spring 2015 Health Informatics. Patient empowerment and personal health records and Consumers Informatics.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
The Information Commissioner’s Office David Evans.
Implementation of Security and Confidentiality in GP Practices.
Handling information 14 Standard.
Health & Social Care Apprenticeships & Diploma
Care.Data an ICO Update EMIS National User Group Conference East Midlands Conference Centre Nottingham 3 rd October 2013 Lynne Shackley Lead Policy Officer.
Healthier Horizons The Patient Information Needs Examples from around the UK Dr Amir Hannan Full-time General Pracitioner Primary Care IT clinical lead,
EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.
Research Paper Presentation Software Engineering in agent systems.
Better Care Better Health Better Life Opportunities and Challenges of Using Electronic Health Records to Enhance Patient Care Dr Amir Hannan Full-time.
Computers, the law and ethics  Lesson Objective: Understand some of the legal & ethical issues in developing computer systems  Learning Outcome: Know.
MEDICAL PROTECTION SOCIETY PROFESSIONAL SUPPORT AND EXPERT ADVICE Dr George Fernie – Senior Medico-legal Adviser Dr Andrew Power - Medico-legal Adviser.
The Data Protection Act 1998 The Eight Principles.
The Eighth Asian Bioethics Conference Biotechnology, Culture, and Human Values in Asia and Beyond Confidentiality and Genetic data: Ethical and Legal Rights.
Better Care Better Health Better Life Patient empowerment and the future of care delivery Dr Amir Hannan Full-time General Practitioner, Haughton Thornley.
OCR Nationals Level 3 Unit 3.  To understand how the Data Protection Act 1998 relates to the data you will be collecting, storing and processing  To.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
From Privacy to Information Governance Dr Petra Wilson Internet Business Solutions Group - Cisco.
GEOG3025 Confidentiality and social implications.
Data Protection Act AS Module Heathcote Ch. 12.
IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
Processing personal health data: the regulator’s perspective Ken Macdonald Assistant Commissioner Information Commissioner’s Office.
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
Local Government Reform and Compliance with the DPA Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s Office.
Legal issues The Data Protection Act Legal issues What the Act covers The misuse of personal data By organizations and businesses.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
Understanding the trade-off between security and accessibility Dr Amir Hannan Full-time GP Information Management & Technology Lead Tameside & Glossop.
Computing, Ethics & The Law. The Law Copyright, Designs and Patents Act (1988) Computer Misuse Act (1990) Data Protection Act (1998) (8 Main Principles)
INFORMATION GOVERNANCE AND CONFIDENTIALITY Information Governance Facilitator.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
DATA PROTECTION ACT DATA PROTECTION ACT  Gives rights to data subjects (i.e. people who have data stored about them on a computer)  Information.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Can you share? Yes you can!! Angus Council Adult Protection Maureen H Falconer, Senior Policy Officer Information Commissioner’s Office.
Getting data sharing right for every child Maureen H Falconer Senior Policy Officer Information Commissioner’s Office.
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
The Data Protection Act 1998
The Data Protection Act 1998
Making the Connection ISO Master Class An Overview.
Trevor Ellis Trainee Programmer (1981 – 28 years ago)
Level 2 Diploma in Customer Service
General Data Protection Regulation
Data Protection Act.
The Data Protection Act 1998
Data Protection & Freedom of Information- An Introduction
G.D.P.R General Data Protection Regulations
Unit 2: Global Information
General Data Protection Regulation
Data Protection principles
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Presentation transcript:

Opportunities and Challenges of Using Electronic Health Records to Enhance Patient Care Dr Amir Hannan Full-time General Practitioner Primary Care IT lead, NHS North-West Information Management & Technology lead, NHS Tameside & Glossop Haughton Thornley Medical Centres, Hyde, Cheshire, England Member of the National Clinical Reference Panel for Summary Care Record, NHS Connecting for Health 8 th July 2010 Cartoon taken from

Summary The case for change Managing aspects of consent and confidentiality Governing internet access to patient records

The rising cost of care Ageing Population 2001 – over 60s > than under 18s 2050 – 4 times as many needing care At 4 times the current cost More expensive treatments /technologies Funding gap – £15-20 billion over next 3 years

“The least used resources the NHS has are patients and information” Dr Richard Fitton GP, ex-Caldicott Guardian, NHS Tameside & Glossop

Tension between Information Governance and Clinical Governance Confidentiality Information security NHS Records Management Standards and Guidance Information Governance Clinical Effectiveness Risk management effectiveness Patient experience Communication effectiveness Resource effectiveness Strategic effectiveness Learning effectiveness Clinical Governance

Caldicott Guardian – the Guardian Angel above us all! Information Governance Clinical Governance A Caldicott Guardian is a senior person responsible for protecting the confidentiality of patient and service-user information and enabling appropriate information-sharing. The Guardian plays a key role in ensuring that the NHS, Councils with Social Services responsibilities and partner organisations satisfy the highest practicable standards for handling patient identifiable information.

Safety vs Confidentiality The Declaration of Human Rights balances the right for life and security with the right for a private life You cannot have a private life if you have died of a medical accident (10,000 each year in the UK) Article 3. Everyone has the right to life, liberty and security of person. Article 12. No one shall be subjected to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honour and reputation. Everyone has the right to the protection of the law against such interference or attacks. The DPA review demonstrates PROPORTIONALITY. What is most important patient safety or confidentiality. It is a balance that has to be thought about planned and audited. (Thanks to Dr Richard Fitton, ex-Caldicott Guardian, NHS Tameside & Glossop)

The Partnership of Trust

The Paradigm Shift in Healthcare IT based health care system Internet Increase in health literacy Patient access to Electronic Health Record Patient choice Choice leads to better outcomes

Data Protection Act SCHEDULE 1 The data protection principles Part I The principles 1 Personal data shall be processed fairly and lawfully and, in particular, shall not be processed unless— to be fair and lawful patients need to be able to know what is being processed  at least one of the conditions in Schedule 2 is met, and  in the case of sensitive personal data, at least one of the conditions in Schedule 3 is also met. 2 Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes. When patients can see audit trails they can help to audit what the data is processed for and when it is being processed inappropriately. 3 Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed. When patients can see and contribute to the record they can help decide when data is excessive in relation to the purpose for which it is being processed. 4 Personal data shall be accurate and, where necessary, kept up to date. Patients can help keep the data accurate and up to date – reviewing it and pointing out errors and omissions. 5 Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes. Patients who access their records can help to decide what should be “deleted” when it is no longer necessary. 6 Personal data shall be processed in accordance with the rights of data subjects under this Act. Patients have rights to see their records (Section 7),to prevent processing likely to cause damage or distress (Section 10), in relation to automated decision-taking (Section 12) and of rectification, blocking, erasure and destruction (Section 14) Seeing their records can help them have express these rights. 7 Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data. Patients checking their record contents and audit trails is one appropriate measure. 8 Personal data shall not be transferred to a country or territory outside the European Economic Area unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data. 36 Domestic purposesPersonal data processed by an individual only for the purposes of that individual’s personal, family or household affairs (including recreational purposes) are exempt from the data protection principles and the provisions of Parts II and III. Patients who access their own records can share them any where. Comments in RED added by Dr Richard Fitton, ex-Caldicott Guardian, NHS Tameside & Glossop

With thanks to Nigel Landman, QT & C ltd

What is needed to improve compliance / concordance Build trust relationship through increased transparency Show the “planetary” systems revolving around the patient – what is available for them now! Help patients and their families to understand where they are, where they could be and how to get there Provide tools for patients – satellite navigation for healthcare Simple explanation of how to get the best care possible Move patients from being passive recipients to active partners…

What do they need for their care?

Appointment setting via EMIS Access What do they need for their care?

Prescription ordering What do they need for their care?

Access to full health record What do they need for their care?

Access to full health record What do they need for their care?

Free text as well as coded data with information links What do they need for their care?

Patient has access to letters What do they need for their care?

What do they need for their care?

What do they need for their care?

This could be part of an Integrated Care Pathway What do they need for their care?

What do they need for their care?

Governance Explicit consent process What information are patients provided with? How do we check that patients have understood the issues? Children and mental health Harmful data and 3 rd Party Data Can we provide proof for external scrutiny? Is it transferable to other providers? Local Care Record Development Board

What about those unable to give explicit consent eg in nursing homes Proportionality Pilot in Nursing Home Explicit consent should be sought first Lasting Power of Attorney Unable to give consent Nurses provided with IG training Enable access via EMIS Web / EMIS Access Identify issues and solutions – FAQs Enable access in Residential Homes Does it help to manage costs and enable QIPP

Opportunities / Challenges Move away from single solution towards multiple solutions depending on needs and acceptance Summary Care Record and Patient access to EHR and Advanced HealthSpace / Personal Health Records Knowledge-based healthcare systems Governance – let’s get consent right Jumping the chasm – political, economic, healthcare and personal pressures will drive change coupled with experience of innovators and early adopters Business model to be defined by late adopters Emergent change, getting requirements right, clinical engagement, GPs, Managing Budgets

Conclusion eMPOWERed patients need access to their medical records AND high quality information about their care AND how to manage it. e Medical Patient and the Public cOmmunication World wide web Electronic Record

Isn’t it time YOU got access to YOUR records and started using it to improve YOUR health and enter the world of REAL-TIME DIGITAL MEDICINE ? Dr A Hannan See my latest paper published in “Informatics in Primary Care” entitled: Providing patients on-line access to their primary care computerised medical records - a case study of sharing and caring