Creating an IHE ATNA-based audit repository.
(57/158)
Compliance with the Health Insurance Portability and Accountability Act (HIPAA) requires gathering audit information from picture archiving and communications systems (PACS) regarding evidence trails of human interactions. Until recently, most PACS users have had limited access to auditing information. Access required resources to handle manual inspection of audit logs, and access to proprietary databases was not always available. Some vendors now produce eXtensible Markup Language (XML) audit logs based on certain events occurring in PACS. However, it is up to the user to convert this information into an easily mined data repository supporting compliance and quality control. This process can be handled in multiple ways, which could mean different audit mechanisms depending on the PACS (or other hospital system) used. It is apparent that an organized method of dealing with audit information is needed. This help may be provided within the Integrating the Healthcare Environment (IHE) framework. The IHE initiative defines a set of profiles, actors, and transactions that create common scenarios for particular workflow processes. The Integration Profiles depict security as a fundamental requirement of the framework. Specifically, the Audit Trail and Node Authentication (ATNA) profile defines standards based mechanisms for securely transmitting and storing audit records in a central repository. The data structure defined by the profile provides a number of record types that capture different audit events. A general feasibility study for storing currently available PACS audit information following the profile is defined, and steps to an automated solution are discussed. (+info)
Employer-sponsored, personal, and portable health insurance.
(58/158)
Personal and portable health insurance is an idea whose time has come. Despite its stated intent, however, the Health Insurance Portability and Accountability Act (HIPAA) strongly discourages individually owned, portable insurance. Federal tax laws do the same. Some examples of portable benefits exist, such as the TIAA-CREF system. This paper considers three reform models for moving toward personal, portable coverage: the National Center for Policy Analysis-Texas Blue Cross Blue Shield proposal, the Massachusetts health care plan, and a health reimbursement arrangement (HRA) approach. Congress could make the transition smoother by clarifying when and if individually owned insurance can be purchased with pretax dollars. (+info)
HIPAA notice of privacy practices used in U.S. dental schools: factors related to readability or lack thereof.
(59/158)
The Health Insurance Portability and Accountability Act of 1996 requires Notices of Privacy Practices (NPP) in plain (clear, concise, and easily understood) language. The objectives of this study were to test the readability of U.S. dental school NPPs; examine factors relating to readability; and develop a plain language NPP supplement. Readability statistics were Flesch Reading Ease (FRE) and Flesch-Kincaid Grade Level (FKGL). Social capital measures of potential resources available to people in a civil society (e.g., perceived trust, perceived reciprocity, and per capita voluntary organization membership) along with lawyers per capita for each state were examined for potential relationships with readability levels. One-sample t-tests assessed plain language (FRE=60, FKGL=8), and analyses of variance compared groups. Spearman rank correlations (r(s)) compared social capital to readability. A plain language NPP supplement was developed. All fifty-six U.S. dental school NPPs were obtained (100 percent response). Forty-eight of fifty-six schools (86 percent) had website NPPs. FRE and FKGL were significantly more complex than plain language, overall (both p<0.0001, 95% CIs: FRE=37.6, 40.5; FKGL=11.2, 11.8) and by region (all p<0.014). Readability did not differ by region. Social capital measures moderately related to readability (0.18 < or = |r(s)| < or =0.39) with reciprocity being most related (FRE r(s)=0.36, FKGL r(s)=-0.39). U.S. dental school NPPs are more complex than "plain language." (+info)
Impact of the Health Insurance Portability and Accountability Act on participant recruitment and retention.
(60/158)
Recruiting and retaining an adequate sample is critical to the success of any research project involving humans. Recent reports indicate that the Health Insurance Portability and Accountability Act (HIPAA) privacy rule has adversely affected research. Few resources are available to help researchers navigate the challenges to recruitment and retention after HIPAA privacy rule implementation. This article addresses obstacles to recruitment in prospective clinical research studies related to the HIPAA privacy rule, as well as HIPAA-compliant strategies to enhance recruitment and retention. Recruitment challenges discussed include evolving interpretations of the HIPAA regulations, inability to directly contact potential participants, complexity of HIPAA-required documents, increased costs of recruitment, and an expanding administrative burden. Among the strategies addressed are preparatory research reviews, using clinical collaborators and staff liaisons, prescreening potential participants, minimizing participant burden during the consent process, enhancing participant follow-up, facilitating recruitment for future studies, and streamlining compliance training for staff. (+info)
Exemption of certain systems of records under the Privacy Act. Proposed rule.
(61/158)
This proposed rule would exempt the four system of records from subsections (c)(3), (d)(1) through (d)(4),(e)(4)(G) and (H), and (f) of the Privacy Act pursuant to 5 U.S.C. 552a (k)(2): The Automated Survey Processing Environment (ASPEN) Complaint/Incidents Tracking System ("ACTS"), HHS/CMS, System No. 09-70-0565; the Health Insurance Portability and Accountability Act (HIPAA) Information Tracking System ("HITS"), HHS/CMS, System No. 09-70-0544; the Organ Procurement Organizations System ("OPOS"), HHS/CMS, System No. 09-70-0575; and the Fraud Investigation Database ("FID"), HHS/CMS, System No. 09-70-0527. (+info)
HIPAA administrative simplification: National Plan and Provider Enumeration System Data Dissemination. Notice.
(62/158)
This notice establishes the data that are available from the National Plan and Provider Enumeration System (NPPES). In addition, this notice addresses who may have access to the data or may receive data from the system, the processes for requesting and receiving data, and the conditions under which data may be disclosed. (+info)
Evaluating the state-of-the-art in automatic de-identification.
(63/158)
To facilitate and survey studies in automatic de-identification, as a part of the i2b2 (Informatics for Integrating Biology to the Bedside) project, authors organized a Natural Language Processing (NLP) challenge on automatically removing private health information (PHI) from medical discharge records. This manuscript provides an overview of this de-identification challenge, describes the data and the annotation process, explains the evaluation metrics, discusses the nature of the systems that addressed the challenge, analyzes the results of received system runs, and identifies directions for future research. The de-indentification challenge data consisted of discharge summaries drawn from the Partners Healthcare system. Authors prepared this data for the challenge by replacing authentic PHI with synthesized surrogates. To focus the challenge on non-dictionary-based de-identification methods, the data was enriched with out-of-vocabulary PHI surrogates, i.e., made up names. The data also included some PHI surrogates that were ambiguous with medical non-PHI terms. A total of seven teams participated in the challenge. Each team submitted up to three system runs, for a total of sixteen submissions. The authors used precision, recall, and F-measure to evaluate the submitted system runs based on their token-level and instance-level performance on the ground truth. The systems with the best performance scored above 98% in F-measure for all categories of PHI. Most out-of-vocabulary PHI could be identified accurately. However, identifying ambiguous PHI proved challenging. The performance of systems on the test data set is encouraging. Future evaluations of these systems will involve larger data sets from more heterogeneous sources. (+info)
From Santa Barbara to Washington: a person's and a nation's journey toward portable health information.
(64/158)
The Santa Barbara County Care Data Exchange recently decided to disband. Because I founded the Santa Barbara Project and went on to lead U.S. health information technology (IT) efforts, it has been suggested that federal health IT policy relied too heavily on the approach used in Santa Barbara. Concerns have been expressed that the U.S. health IT effort rests upon a weak foundation and may be unsustainable. Conversely, the lessons of Santa Barbara were evident to investigators, including myself, long before its termination. These lessons, not the original assumptions and methods used in Santa Barbara, were applied to federal policy. (+info)