Beyond Innovation and Competition, Health IT Edition

July 7, 2011 by Frank Pasquale · Leave a Comment
Filed under: EMR, Electronic Medical Records, IT

Last year I published a piece called “Beyond Innovation and Competition,” questioning the dominance of those values. Economists celebrate innovation and competition as the main source of future growth. Innovation has become the central focus of Internet law and policy. While leading commentators sharply divide on the best way to promote innovation, they routinely elevate its importance. Business writers have celebrated search engines, social networks, and tech startups as model corporations, bringing creative destruction and “disruptive innovation” in their wake. Maximum innovation is the goal, and competition is billed as the best way of achieving it. Players in the vast and dynamic tech marketplace are supposed to constantly strive to innovate in order to attract consumers away from rivals.

In the piece, I explain how both competition and innovation can be as destructive as they are constructive. There are many social values (including privacy, transparency, predictability, and stability), and companies can compete for profits in ways that erode those values. In an era of inequality and hall-of-mirrors stock market valuations, innovations of marginal or negative impact on society at large can be vastly overvalued by a stampede of fickle investors.

The shortcomings of the innovation and competition story also play out in health information technology. Stimulus legislation in 2009 provided many carrots and sticks for doctors to digitize their recordkeeping systems, ranging from bonuses now to reimbursement haircuts later this decade if they fail to implement the technology. Congress structured the incentives to encourage a competitive and innovative marketplace in health information technology. But many doctors are shying away from implementation, in part because they fear that the fast and loose ethics of the market can’t mesh with a medical culture of constant commitment to quality care.

Susan Jaffe’s article for the Center for Public Integrity examines doctors’ fears about adopting any given software suite. According to Jaffe, “570 different electronic health systems certified by private organizations for non-hospital settings may be used to qualify for the” stimulus funds. The long-term consequences of the choice make the jam-shopping examples in Barry Schwartz’s book The Paradox of Choice seem quaint:

The systems can vary in appearance, content, organization and special features. Some can be customized by users in different ways, at no cost or some cost, or not at all. Some are compatible with other systems now, eventually or, some critics say, maybe never. . . . The costs of the systems remain daunting, despite the bonuses, particularly in areas that have been hit hard by an ailing economy.

The pricetag varies widely depending on the type and size of the medical practice, whether new computers are purchased and the extent of customization, among other things. Software alone can cost from $2,000 to $10,000 per doctor. All told, the cost jumps to about roughly $20,000 per doctor, according to a regional extension center consultant who advises physicians in northeast Ohio. On top of that, manufacturers charge hefty annual fees for technical support and periodic upgrades that together can amount to about 35 percent of the upfront costs. The systems are priced in a way that does not make comparison shopping “easy or necessarily valid,” said Dottie Howe, a spokeswoman for the Ohio regional extension center. There is no basic price because each company offers different components, features, options, and level of technical support. . . .

Most manufacturers will also charge the doctors to move the information in their current system to the new one. There could be extra [ongoing, monthly] charges to connect to other systems too.

Doctors have also been burned by sharp operators that emphasize slick salesmanship over solid service:

[T]he Southwest Family Physicians group is worried . . . They bought an electronic health record system five years ago that is now nearly obsolete. The manufacturer was taken over by another company that provides minimal technical support . . . “The salesman said ‘you’re buying a Cadillac, this is going to be the greatest thing,’ ” [one doctor] recalled. But that system can’t display an X-Ray image or send a prescription electronically to a pharmacy. “We’ve got the Model T Ford,” he said.

le secret, l'illustration Européenne 1871 no.22 page 173

It does appear that regional extension centers are doing some work to keep pricing reasonable. Jaffe’s article focuses on Ohio, where five “preferred vendors” “agreed to charge prices ‘as good as or better than’ prices offered to other regional extension centers, to provide onsite assistance when a practice turns on its electronic health record system for the first time, offer technical support for at least six years, and limit annual cost increases for continuing technical support, among other things.” But consider the bizarrely proprietary nature of pricing data:

Whether the five preferred vendors offer a better deal than their non-preferred competitors is not known because the state regional extension center doesn’t have pricing information from non-preferred vendors, said Howe, the spokeswoman for the state’s regional extension center. Pricing from the preferred vendors are confidential, she said. And despite their preferred status, the five companies do not guarantee that eligible health care providers who purchase their systems will receive the government’s bonus payments.

I discussed the troubling degree of secrecy in health care before, and I’m very sad to see it persist here. The doctors in Jaffe’s story are making reasonable demands: to be able to understand the nature of the commitment they are making, to avoid big financial losses, and not to be burned by fly-by-night operators attracted only by the government subsidy money. They want to assure that the basic health care values of access, cost-control, and quality are reflected in the software they use.

We are seeing the opening stages of a battle between a medical sector committed to maintaining its own autonomy and traditions, and a tech sector that wants to commoditize health data in as standardized a form as futures markets homogenized corn grades, or credit scores tranched residential mortgage backed securities. Commenting on the demise of Google Health, an informatics expert said that “Google is unwilling, for perfectly good business reasons, to engage in block-by-block market solutions to health-care institutions one by one, and expecting patients to actually do data entry is not a scalable and workable solution.” To be sure, the company can’t expect to make the same profit margins in the health sector as it does in the online ad business. But the “instant millions” ethos of Silicon Valley doesn’t fit well with a sector where we are in principle committed to serving everyone, regardless of ability to pay.

Economist John Van Reenen has observed that the US has a particularly innovative economy in part because our markets are so good at crushing badly run firms. It’s probably good that garden equipment suppliers, toothpaste makers, and pie bakers know they can be out of business in a month or two if they’re “off their game” for a short time. But if I just entrusted three years of medical records to a vendor who suddenly went out of business, I’d take little comfort in the idea that a marginally better competitor had knocked it out of the market. The transition to a new vendor can be slow and costly—doctors in Jaffe’s story speak of seeing 1/3 to 1/2 less patients over weeks or months as they learn a new system.

At a Yale SOM Health Care conference in 2009, the Chief Medical Officer of a major player in the field once remarked to me that choosing an HIT vendor is “like a marriage—you don’t end the relationship lightly.” I first thought that remark was self-serving. But the more one examines the HIT field, the more important it appears to get standard recordkeeping, support capabilities, and interoperability right at the outset, rather than leaving doctors to negotiate the wreckage of several generations of battling systems. Think about how chaotic online music sales seemed before iTunes. Perhaps Apple (whose iPads are already beloved by many docs) is going to bring a swift and highly profitable order to this field, too. I hope the ONC and other decisionmakers will well-regulate whatever behemoth eventually emerges, vindicating the public values that competition and innovation are unlikely to promote.

Photo credits to Aleksandar Šušnjar, Jakub Halun and loki11.

Tags: Electronic Medical Records, EMR, Health Care Reform, Health Reform, HIT, The HITECH Act Compliance

The Right to Life, Liberty… and the Internet?

June 15, 2011 by Regina V. Ram · Leave a Comment
Filed under: Global Health Care, IT

This month, the United Nations (UN) Human Rights Council recognized access to the Internet as a human right. The report was written by UN Special Rapporteur on the Promotion and Protection of the Right to Freedom of Opinion and Expression, Frank La Rue, and it separately considers access to Internet content and access to the infrastructure required for Internet access. The report cites over 2 billion Internet users worldwide and notes that the Internet has becomes a key means through which individuals can exercise their right to freedom of opinion and expression. La Rue concludes that “there should be as little restriction as possible to the flow of information via the Internet, except in few, exceptional, and limited circumstances prescribed by international human rights law.”

The report seems motivated by recent episodes of political unrest such as the Arab Spring uprisings. La Rue states that the Internet is “one of the most powerful instruments of the 21st century for increasing transparency in the conduct of the powerful, access to information, and for facilitating active citizen participation in building democratic societies.” He notes that countries have been increasingly censoring online information through 1) arbitrary blocking or filtering of content, 2) criminalization of legitimate expression, 3) imposition of intermediary liability, 4) disconnecting users from Internet access, and 5) inadequate protection of the right to privacy and data protection. La Rue recognizes some legitimate reasons to restrict Internet access, like in the case of cyber- attacks, but focuses on how countries often abuse their power and infringe on the rights of their citizens:

In many instances, States restrict, control, manipulate and censor content disseminated via the Internet without any legal basis, or on the basis of broad and ambiguous laws, without justifying the purpose of such actions… Such actions are clearly incompatible with States’ obligations under international human rights law, and often create a broader “chilling effect” on the right to freedom of opinion and expression.

La Rue specifically notes his concern with the “three- strikes-law” in France and the UK’s Digital Economy Act of 2010. Both of these proposals are anti-piracy measures that would impose penalties against Internet users for illegal file sharing and violation of intellectual property rights. The end result could be suspension of Internet service if copyright infringers disregard warnings. La Rue considers that

Cutting off users from Internet access, regardless of the justification provided, including on the grounds of violating intellectual property rights law, to be disproportionate and thus a violation of article 19, paragraph 3, of the International Covenant on Civil and Political Rights.

Article 19 of the ICCPR concerns the right to freedom of expression.

The fundamental human rights doctrine, the Universal Declaration of Human Rights (UDHR), was penned in 1948 just after the end of WWII. In part based on Franklin Delano Roosevelt’s Four Freedoms, the document was largely a response to the atrocities seen in the war. Article 19 of the UDHR states that

“Everyone has the right to freedom of opinion and expression; this right includes freedom to hold opinions without interference and to seek, receive and impart information and ideas through any media and regardless of frontiers.”

The drafters left the definition of ‘media’ open in anticipation of new technologies, and the Internet and its extraordinary proliferation in recent years is the most relevant form of media in our time.

La Rue, however, does not just depend on this as a basis for his claim that removing Internet access is a deprivation of the basic human right of freedom of expression. He elaborates on how the Internet facilitates the realization of other human rights-

The right to freedom of opinion and expression is as much a fundamental right on its own accord as it is an “enabler” of other rights, including economic, social and cultural rights, such as the right to education and the right to take part in cultural life and to enjoy the benefits of scientific progress and its applications, as well as civil and political rights, such as the rights to freedom of association and assembly. Thus, by acting as a catalyst for individuals to exercise their right to freedom of opinion and expression, the Internet also facilitates the realization of a range of other human rights.

But even if Internet access constitutes a human right, many countries lack access to basic commodities such as electricity, let alone the necessary infrastructure and technologies to access the Internet. La Rue rests on the positive obligation of countries to work towards promoting or facilitating freedom of expression. He encourages countries to develop a “concrete and effective policy… to make the Internet widely available, accessible and affordable to all segments of population.”

La Rue’s report remains the first recommendation in a series of negotiations on how to adopt access to the Internet as a fundamental right. As La Rue concludes, “given that the Internet has become an indispensable tool for realizing a range of human rights, combating inequality, and accelerating development and human progress, ensuring universal access to the Internet should be a priority for all States.”

La Rue is right to understand the internet as a means to effectuate development. The implications for healthcare can, of course, be staggering. An internet connection is no substitute for bread or medicine but that connection makes widely available medical techniques and public health information and makes “remoteness” a somewhat antiquated concept. If global health is to substantially improve, internet access will ultimately be key.

Tags: EMR, Global Health, Health Care Reform, Health Reform, Internet, Online Health

Online Health Data in Employers’ and Insurers’ Predictive Analytics

November 23, 2010 by Frank Pasquale · Leave a Comment
Filed under: EMR, IT

pasquale Did you know that buying generics instead of brands could hurt your credit? Or that a subscription to Hang Gliding Monthly could scare off life insurers? Or that certain employers’ access to electronic health records could lead them to classify you as “high-risk” or “high-cost”?

In all these cases, firms use “predictive analytics” to maximize profits. Consumers are the guinea pigs for these new “sciences” of the human. As Scott Peppet argues, it becomes more difficult to opt out of analytics systems as more people use them. What type of world are they leading us to?

Credit Analytics: Should Frugality be Punished?

One credit analytics company determined that buyers of cheap automotive oil were “much more likely to miss a credit-card payment” than those who paid for a brand-name oil. Spending on therapy sessions may also be a red flag. Appearing too frugal, too anxious, too spendthrift—all might lead to higher interest rates or lower credit limits. One R&D head at a credit analytics firm bragged that they consider over 300 characteristics to discover delinquency risk. He was not nearly as forthcoming about how the data is aggregated. Analyzing millions of transactions, the companies observe customers as a gardener might observe a rose garden: weeding out unpromising specimens, and giving a boost to incipient flourishers.

Many have complained about inaccuracy in these new forms of profiling, and consumers’ inability to review and correct digital dossiers collected about them. But let’s just assume that this profiling is correct, and choosing a generic really does correlate with increased credit risk. What’s the social value of this discovery? Maybe credit card companies can reduce rates infinitesimally (and increase profits) by burdening the generic buyers. But I’d be willing to bet that, for every few people whose generic purchases indicate financial trouble, there is another shopper who’s wisely frugal and increasing her chances of successfully repaying all her loans. It seems very odd to penalize the financially responsible merely because they happen to engage in an activity shared by the distressed.

The Dream of the Perfect Profile

Ahh, predictive analysts might reply, you just oversimplify our process. We would never reduce the credit line of someone who purchases generics if that person also, say, has a subscription to Travel and Leisure, or drives a Nexus, or gives over $1,000 a year to the Republican National Committee. They’re not desperate—they’re just careful shoppers. The more information we have, the more fair and accurate we can be. (I can only propose this response, since the industry is so careful about protecting its trade secrets. But this seems like a plausible counterargument.)

Just as free speech advocates often say that the answer to “bad speech” is more or “counter” speech, predictive analysts may argue that the cure for the mistreatment of any given individual is more information about the person’s true motives or opportunities. If privacy advocates are worried that certain surveillance practices will unfairly tarnish the reputation or profile of an individual, the answer is more, not less, information, on that person. The more comprehensive a picture that firms can develop of the individual, the better they are able to properly target resources.

Whatever the merits of this approach, it appears to me that it only applies to one dimension of the credit analytics example above. Rewarding “brand buyers,” in general, is not that likely to alter behavior in ways that could seriously undermine someone’s quality of life. But effectively punishing those who seek therapy or marriage counseling creates a different set of concerns, showing once again the ways in which health care decisionmaking needs to be distinct from the Procrustean forces of market pressures.

Stressed by Sickness in the Risk Society

A recent article by Sharona Hoffman illuminates some problems with pervasive use of health data in predictive analytics.

Employers may obtain and process EHRs [electronic health records] for a variety of reasons. Many require applicants who have received employment offers to provide authorizations for release of medical records in order to verify the individuals’ fitness for duty. At times, employers require records for purposes of workers’ compensation claims, reasonable accommodation requests by individuals with disabilities, or Family Medical Leave Act (FMLA) requests. Employers who are self-insured also process employees’ medical data in order to pay insurance claims.

EHRs will likely provide employers with unprecedented amounts of data. . . . Employers or their hired experts may develop complex scoring algorithms based on EHRs to determine which individuals are likely to be high-risk and high-cost workers. . . . Employers with access to EHRs containing a wealth of medical information may be sorely tempted to exclude certain individuals from the workforce because of concerns about the employees’ future productivity, absenteeism, or medical costs. To disguise unlawful conduct, employers may not act immediately to withdraw a job offer or terminate an employee, but rather, decide not to promote an individual with a disability or to select her for a layoff at a later time.

In other words, predictive analytics in health can lead to more “death spirals” for the sick: lost employment, lost insurance due to that lost employment, and future inability to find work due to poor health. Hoffman’s concerns about employers sidestepping relevant regulations were reflected in today’s WSJ article on insurance profiling, too:

[G]iant data-collection firms . . . sort details of online and offline purchases to help categorize people as runners or hikers, dieters or couch potatoes. They scoop up public records such as hunting permits, boat registrations and property transfers. They run surveys designed to coax people to describe their lifestyles and health conditions. Increasingly, some gather online information, including from social-networking sites.

For insurers and data-sellers alike, the new techniques could open up a regulatory can of worms. The information sold by marketing-database firms is lightly regulated. But using it in the life-insurance application process would “raise questions” about whether the data would be subject to the federal Fair Credit Reporting Act, says Rebecca Kuehn of the Federal Trade Commission’s division of privacy and identity protection. The law’s provisions kick in when “adverse action” is taken against a person, such as a decision to deny insurance or increase rates. The law requires that people be notified of any adverse action and be allowed to dispute the accuracy or completeness of data, according to the FTC. Deloitte and the life insurers stress the databases wouldn’t be used to make final decisions about applicants. Rather, the process would simply speed up applications from people who look like good risks.

Many aspects of FCRA have been rendered irrelevant by the all-importance of credit scoring—it’s hard to care too much about one’s ability to “correct” one’s credit report if the only thing that really matters is a score whose calculation only contingently depends on any given piece of information in the report. But I had not heard before Deloitte’s assurance that information would “simply speed up” applications, and not “be used to make final decisions.” Quite the creative lawyering behind that distinction.

Relating the Real and the Digital Body

Dan Solove has written extensively on the “digital person,” and perhaps we can see predictive health analytics as an effort to create a “digital body.” As the WSJ reports, we are reaching a point where online “data can reveal nearly as much about a person as a lab analysis of their bodily fluids.” The least we can ask is for the purveyors of data-driven decisionmaking to be much clearer about how they profile individuals. Moreover, in the case of employment, we should seriously consider expanding disability discrimination laws to prevent employers from stratifying employees based on health data. Profits are important, but they shouldn’t come at the expense of sick people who already have enough problems to contend with. As HHS implements PPACA’s promotion of “wellness programs” at workplaces, they should also try to avoid the “Orwellness” of data-driven health profiling.

X-Posted: Concurring Opinions.

Tags: Credit Analytics, Electronic Data, Electronic Medical Records, EMR, Health Care Reform, HIT, Predictive Analytics

Privacy Paradigms: From Consent to Reciprocal Transparency

October 25, 2010 by Frank Pasquale · 1 Comment
Filed under: EMR, Electronic Medical Records, IT

frank-pasquale-cropped-dsc_6024-2 Computational innovation may improve health care by creating stores of data vastly superior to those used by traditional medical research. But before patients and providers “buy in,” they need to know that medical privacy will be respected. We’re a long way from assuring that, but new ideas about the proper distribution and control of data might help build confidence in the system.

William Pewen’s post “Breach Notice: The Struggle for Medical Records Security Continues” is an excellent rundown of recent controversies in the field of electronic medical records (EMR) and health information technology (HIT). As he notes,

Many in Washington have the view that the Health Insurance Portability and Accountability Act (HIPAA) functions as a protective regulatory mechanism in medicine, yet its implementation actually opened the door to compromising the principle of research consent, and in fact codified the use of personal medical data in a wide range of business practices under the guise of permitted “health care operations.” Many patients are not presented with a HIPAA notice but instead are asked to sign a combined notice and waiver that adds consents for a variety of business activities designed to benefit the provider, not the patient. In this climate, patients have been outraged to receive solicitations for purchases ranging from drugs to burial plots, while at the same time receiving care which is too often uncoordinated and unsafe. It is no wonder that many Americans take a circumspect view of health IT.

Privacy law’s consent paradigm means that, generally speaking, data dissemination is not deemed an invasion of privacy if it is consented to. The consent paradigm requires individuals to decide whether or not, at any given time, they wish to protect their privacy. Some of the brightest minds in cyberlaw have focused on innovation designed to enable such self-protection. For instance, interdisciplinary research groups have proposed “personal data vaults” to manage the emanations of sensor networks. Jonathan Zittrain’s article on “privication” proposed that the same technologies used by copyrightholders to monitor or stop dissemination of works could be adopted by patients concerned about the unauthorized spread of health information.

If individuals had enough time to manage their personal data the way they manage their checkbooks and gardens, perhaps the consent paradigm would be a good foundation for addressing public concerns about privacy. If applicants could easily bargain with would-be employers over privacy, or patients with hospitals, perhaps we could rely on them to protect their interests. But actual occurrences of such acts of self-assertion and self-protection are rare. Given the frequently abstract benefits that privacy and reputational integrity afford, they are often traded away for competitive economic advantage. This process further erodes societal expectations of privacy.

A collective commitment to privacy is far more valuable than a private, transactional approach that all but guarantees a race to the bottom. If such a collective commitment does not materialize, record systems will only deserve trust if they become as transparent as the patients and research subjects they profile. Given corporate assertion of trade secrecy (and even privacy rights), reciprocal transparency will not be easy to achieve. Nevertheless, repeated breaches, fraud, and data meltdowns in the US should provoke an alliance of socially responsible researchers to lobby the US government to set minimal standards of reciprocal transparency and auditing. Consumers can only trust innovators if they can understand what is being done with data. As we become “transparent citizens” (as Joel Reidenberg puts it), we should demand that the corporate, university, and governmental authors of that trend reciprocate, and become more open about the data they gather.

Fortunately, as a recent presentation by Deborah Peel reminded me, there is significant audit authority built into the recent HITECH act which may curb some abuses. Audits will become increasingly important as a “wild west” of health data is excavated by scrapers, marketers, and other data miners.

Consider, for instance, the following scenario: contributors to the medical website PatientsLikeMe.com found that “Nielsen Co., [a] media-research firm . . . was ‘scraping,’ or copying, every single message off PatientsLikeMe’s private online forums.” Had the virtual break-in not been detected, health attributes connected to usernames (which, in turn, can often be linked to real identities) could have spread into numerous databases. A reciprocal transparency paradigm would require all those harboring health data to have some certified indication of its legitimate provenance. Data would not be allowed to persist without certification of its provenance.

Unforeseen spread of inaccurate or inappropriate health data is not just a problem for those who want to avoid getting solicitations for burial plots after a sensitive appointment. Given law enforcement exceptions to medical privacy laws and regulations, it should come as little surprise that the government claims that “a 2005 law authorizes it to monitor and record all prescription drug use by all citizens via so-called “Prescription Drug Monitoring Programs.” Such programs may just be the tip of an iceberg of new domestic intelligence programs that rely on private companies to act as “big brother’s little helpers.”

Whenever health data is fed into an evaluative profile of an individual, there should be safeguards in place to assure that the data is accurate, and that the resulting profile is, if at all possible, not used to harm or disadvantage the individual. Without assurances like these, we can count on continued resistance to the development of health data infrastructures.

Tags: Electronic Medical Records, EMR, Health Care Reform, Health Reform, HIPAA, HIT, Privacy

HIPAA, The HITECH Act, and How Google May Still Be Able to Distribute, and Profit From, Your Personal Health Info

August 6, 2009 by Jordan T. Cohen · 7 Comments
Filed under: EMR, Electronic Medical Records, IT

Photo by Jonathunder

Below I will explore what seems to be a gaping hole in the HITECH Act. However, as with any new legislation, it is often necessary to reexamine the laws that preceded it, which in this case is HIPAA. This is particularly true given that the HITECH Act does not replace HIPAA. Rather, it provides–amongst other things–additional security and privacy safeguards with respect to health information. To that extent, at least a cursory reexamination of HIPAA is required before understanding HITECH and the importance of comprehensive legislation.

HIPAA was a product of the 1990’s–an era triggering nostalgic memories of grunge music for some, and the (in)famous Macarena dance for others. For a large part of this period, the Internet was accessed by a handful of tech savvy individuals who dialed into services like CompuServ, Prodigy, and AOL. It was during this transition that Congress felt the need to make health insurance more portable, as well as standardize the variegated electronic systems that were conducting nonstandard healthcare-related transactions. There was a concomitant concern that health information needed better protection. Thus, in 1996 Congress adopted the Health Insurance Portability and Accountability Act (HIPAA), providing HHS with the responsibility to enforce it. However, the regulation enforcing privacy and security of health information would not be implemented until years later.

HIPAA’s Privacy Rule, which describes the appropriate use and disclosure of certain health information, came into force on April 14th, 2001, updated in 2002, with compliance required by April of 2003. The Security Rule, which establishes the policies and best practices for securing health information, came into force in 2003. Thus, the Privacy and Security Rules (referred to below as HIPAA) came to life in a period of technological transition. New technologies like residential broadband Internet access and Wi-Fi networks were becoming the norm. Electronic Health Record (EHR) systems had been developed, but had only marginal penetration within certain academic medical centers and government entities. Consequently, the threats to patient privacy from early EHRs was much smaller than it is today, since these systems were not widespread and did not often share data over disparate regions. Thus, access to the systems was not necessarily available outside of the intranets where the servers were located.

Acronyms of HIPAA & HITECH

Acronym	Phrase	General Definition (see 160.103 for regulatory language)
PHI	Protected Health Information	Any oral or recorded information relating to any past, present, or future physical or mental health of an individual, provision of healthcare to the individual, or the payment for the healthcare of that individual.
CE	Covered Entity	A group of entities whose use, disclosure, and protection of PHI is regulated by HIPAA and HITECH. CEs are comprised of: 1) Health care provider (e.g. physicians) that submit transactions electronically. 2) Health care plans (e.g. HMOs) 3) Health care clearinghouses (which are public or private entities, including a billing service, repricing company, community health management information system, etc… that processes or facilitates the processing of health information received from another entity in nonstandard form into standard form, or from standard form to non-standard form.
BA	Business Associate	Individuals or organizations performing an activity involving the use or disclosure of PHI on behalf of the CE. BAs can include attorneys, accountants, shredding companies, billing companies, or any other person or organization that is not a CE but which is accessing a CE’s PHI.
EHR	Electronic Health Record	An electronic record of patient care comprised of information about the delivery of care, including demographic information, medications, diagnoses, etc.
PHR	Personal Health Record	An electronic record of patient care comprised of much of the same information that an EHR is comprised of, but which is created and maintained by the individual (usually a patient) as opposed to a provider. Prominent examples are Google Health and Microsoft HealthVault

d

Given the historical context of HIPAA’s passage, it is easy to appreciate HIPAA’s missteps in not specifically focusing on EHRs or PHRs. Rather, HIPAA regulates protected health information at a broader level, focusing primarily on the “use and disclosure” of PHI by CEs, and the best practices and policies for securing the PHI itself. To be fair, the Security Rule does focus on PHI that is stored and transmitted electronically. However, even the most stringent best practices and policies are useless if the corresponding privacy regulations are inadequate.

But the times they are a-changin’–sort of.

Buried on page 112 of the American Recovery and Reinvestment Act (ARRA)–also known as the Stimulus Bill–is Title VIII of the bill, known as the Health Information Technology for Economic and Clinical Health Act, or more commonly, the HITECH Act. One (of the many) purposes of the HITECH Act is to fill in the gaps that have emerged since the Privacy and Security rules came into force. But like before, we are in a transition period. Whereas HIPAA’s passage coincided with a period of generalized transition towards digital information, HITECH has coincided with its own transition: the implementation of personal health records (PHRs). Unfortunately, the current HITECH Bill and regulations have serious flaws in how they protect patient information stored in PHRs. However, before discussing the problems, it is only fair to discuss the benefits to privacy and security that HITECH’s passage has provided.

Specifically, HITECH introduces breach notification requirements. HITECH’s provisions govern the procedures which CEs and BAs must follow if health information has been compromised. HITECH also empowers the FTC to promulgate regulations pertaining to the notification procedures of PHR vendors (as well as those who offer services to PHR vendors). The FTC’s proposed breach notification requirements can be found here. Thus, CEs, BAs, and PHR vendors are, for the first time, required by law to notify individuals if their unsecured PHI has been accessed by unauthorized individuals. Surprisingly, this was not required under HIPAA. CEs were obligated to notify individuals only insofar as the CEs were required by HIPAA to mitigate damages. But now, with the passage of HITECH, breach notification is no longer amorphous, but is spelled out in detail in HITECH’s regulations.

Additionally, HITECH requires BAs to abide by many of the same privacy and security requirements that CEs have had to abide by. Before HITECH, a BA, such as an attorney reviewing the PHI of a CE, was required to sign an agreement promising to protect the PHI that they were accessing, but were not themselves regulated by HIPAA. Thus, BAs had only contractual liability to the CE if the BA violated the rules of the agreement. On the other hand, if a CE violated HIPAA, it was subject to specific penalties and fines by the government.

Under HITECH, BAs must now comply with much of the Privacy and Security Rule, and face many of the same penalties and fines if they violate HIPAA regulations. That is, BAs are now accountable to the government if they improperly use or disclose PHI, or fail to adequately secure PHI.

HITECH also offers other benefits, such as increased enforcement of violations, a strengthening of the requirement that only the minimum necessary information is disclosed to other CEs or BAs, a more thorough framework of accounting for uses and disclosures, as well as a certain prohibitions on the sale of PHI.

The last benefit of HITECH–the prohibition on the sale of PHI–is a perfect springboard for discussing the potential pitfalls of HITECH. The benefits of HITECH may well be sufficient to shore up HIPAA’s gaps when it comes to regulating CEs and BAs. However, as HITECH’s regulatory language makes clear, there remains a gaping hole:

(d) Prohibition on Sale of Electronic Health Records or Protected Health Information-

(1) IN GENERAL- Except as provided in paragraph (2), a covered entity or business associate shall not directly or indirectly receive remuneration in exchange for any protected health information of an individual unless the covered entity obtained from the individual, in accordance with section 164.508 of title 45, Code of Federal Regulations, a valid authorization

The emphasis is added to underscore that PHRs are not included in this provision. There is no corresponding provisions in the FTC’s proposed regulations which concern breach notification. The upshot of this is that, as of the date of this posting, PHR services like Google Health and Microsoft HealthVault are not subject to this prohibition, nor is there a provision in HITECH mandating that PHRs comply with HIPAA’s Privacy and Security Rule. Therefore, PHR vendors can use, disclose–and possibly even sell–an individual’s health information outside of the HIPAA and HITECH regulations. This problem underscores a larger issue: PHRs are not regulated by HIPAA, and only regulated by HITECH insofar as the FTC’s interim rule requires certain breach notification procedures. Read more

Tags: Add new tag, Electronic Medical Records, EMR, FTC, Google, Health Care Reform, Health Reform, HIPAA, Personal Health Records, PHR, Privacy, Proposed Legislation, The HITECH Act

Dr. David Blumenthal: National Health Care Information Technology Coordinator

March 21, 2009 by Michael Ricciardelli · 1 Comment
Filed under: EMR, Electronic Medical Records, HHS, IT

photo by clintJCL via Flickr

President Obama has appointed Dr. David Blumenthal as the National Health Care Information Technology Coordinator. Dr. Blumenthal is a former Harvard Medical School Professor who, as reported by Kaiser.org, “has conducted a number of studies related to health care IT” and has “served as director of the Institute for Health Policy at the Massachusetts General Hospital/Partners HealthCare System and as a senior adviser to President Obama during his campaign.”

As National Health Care IT Coordinator, Dr. Blumenthal can be expected to play a large role in the direction of how the 19 billion dollars apportioned for Health IT in the recently enacted stimulus package will be spent.

Dana Blankenhorn over at ZDNet Healthcare has written a short and interesting post on Dr. Blumenthal. Among other things worth noting in the post, Blankenthorn writes that Blumenthal has been quoted as “saying IT grants should go to inner-city and rural hospitals, as well as small practices, while most health IT money should go to incentives for improving the quality of care.”

As for the choice of Dr. Blumenthal, Blankenhorn writes

The good news is he’s a policy expert and not a vendor. The bad news is he’s a policy expert and not a technologist. He is a renowned health IT advocate who knows his way around bureaucracies but he is not a geek.

This means Blumenthal has not expressed a view on open source vs. proprietary software. He also hasn’t gotten his hands dirty in the health IT trenches.

Having said that, one might hope that Dr. Blumenthal is familiar with the work of Professors Sharona Hoffman & Andy Podgurski.

Tags: Andy Podgurski, Dana Blankenhorn, David Blumenthal, Dr. David Blumenthal, EMR, Harvard Medical School, Health IT, Health Reform, National Health Care Information Technology Coordinator, Sharona Hoffman, Think Tanks, ZDNET Healthcare

Electronic Medical Records: How to Prevent the Creation of a Costly High-Tech Tower of Babel

March 4, 2009 by Michael Ricciardelli · 6 Comments
Filed under: EMR, Electronic Medical Records, IT

423px-meister_der_paraphrasen_des_pentateuch_0012

Manuskript von Aelfric dem Grammatiker, Szene: Der Turmbau zu Babel

Steve Lohr of The New York Times has written an article, “How to Make Electronic Medical Records a Reality” (a follow-up to “Health Care That Puts a Computer on the Team” 12/26/08) that it is well worth taking the few minutes requisite to read it.

Professors Sharona Hoffman & Andy Podgurski have published an article in the Harvard Journal of Law & Technology that should be on Obama’s nightstand. “Finding a Cure: The Case for Regulation and Oversight of Electronic Health Records” will take more than a few minutes to read, but for those charged with the responsibility of making the prospect of Electronic Medical Records a reality, it should be required reading–because, as the authors point out, we simply cannot afford to get this wrong:

The benefits of EHR systems will outweigh their risks only if these systems are developed and maintained with rigorous adherence to the best software engineering and medical informatics practices and if the various EHR systems can easily share information with each other. Regulatory intervention is needed to ensure that these goals are achieved. Once EHR systems are fully implemented, they become essential to proper patient care, and their failure is likely to endanger patient welfare.

The Journal article is essentially a map, designed to point out hazardous terrain and harness the resources at hand to effectuate a comprehensive Electronic Health Record system– and, through interoperability and regulated standards, to prevent the creation of a costly high-tech Tower of Babel. As the authors remind us, in this territory, malfunction and miscommunication can be deadly–and the concerns of the market are not necessarily coextensive with the common weal.

For those of us who have an interest in the subject, and are convinced that it is essential to have a comprehensive guide (if not a blueprint) for “how to get this right” — take heart–it’s here, and I highly recommend you take the time to read it–and then pass it on and up until it reaches that nightstand, if it’s not already there.

How to Make Electronic Medical Records a Reality

The NY Times article depicts the paucity of EMR use at present (17%) in terms of ”market failure,” and points out that U.S. Government guidance and investment in growing (”jump-starting”) industry and technology is not novel. Lohr writes:

…computer technology and the industry really flowered in the United States. That happened in no small part because the federal government nurtured the market with heavy investment, mainly by the Defense Department, and by choosing standards, like the Cobol programming language.

Today, Washington is about to embark on another ambitious government-guided effort to jump-start a market — in electronic health records. The program provides a textbook look at the economic and engineering challenges of technology adoption.

Lohr correctly points to the chasm which exists in EMR usage between large practices and small, and the failure of the market to incentivize further usage by doctors in these smaller practices. Lohr states:

These larger groups have the scale to invest in information technology, and they are often insurers as well as providers, so they benefit directly from the cost savings. Yet these large groups are the exceptions in American health care. Three-fourths of the nation’s doctors practice in small offices, with 10 doctors or fewer. For most of them, an investment in digital health records looks like a cost for which they are not reimbursed.

It is that “market failure,” says Lohr that the Obama plan seeks to address. To that end, the legislation which has devoted $19 Billion towards this “jumpstart,” “calls for incentive payments of more than $40,000 spread over a few years for a physician who buys and uses electronic health records.”

The legislation also requires that this payment to doctors be in exchange for “meaningful use,” but thus far the term has been left undefined.

We addressed both of these concerns on this blog in mid-January in response to a post on Health Affairs by Dr. David Brailer, Chairman of Health Evolution Partners, a health care investment fund. Read more

Tags: Andy Podgurski, Cost Control, Electronic Medical Records, EMR, Finding a Cure: The Case for Regulation and Oversight of Electronic Medical Records, Health IT, Health Reform, Law Journals, National Newspapers & Media, Sharona Hoffman

LoJacking Grandma and “Reality Mining,” or “Daddy, What was Anonymity?”

February 7, 2009 by Michael Ricciardelli · 4 Comments
Filed under: Electronic Medical Records, IT

photo by mrsmartino via flickr

Mark Heftler, a geriatric care manager who is slated to begin study at Seton Hall Law in the Fall, has written an interesting article on RFID (Radio Frequency Identification) and its potential usage as a means of early diagnosis of dementia among the elderly. Researchers at the University of South Florida have developed and tested an RFID technology which assesses the walking patterns of those which it monitors.

By monitoring the movements of the elderly within geriatric facilities, “the researchers hope to be able to diagnose the onset Alzheimer’s in their patients. Sudden veers, long pauses, and a tendency to wander are all indicators of dementia.”

As MIT’s Technology Review notes, “Drugs that are currently available can only slow the progression of related diseases, so the earlier dementia is caught, the better a patient’s treatment will be.”

Technology Review also notes, “In particular, dementia increases the risk of injury caused by a fall… ‘That’s a huge problem for assisted-living facilities,’” said William Kearns, an assistant professor who researches aging and mental health at USF.

Not Just Grandma

Although one can readily see the positive cost/benefit and quality of life implications of warding off the falls of the elderly, as Frank Pasquale recently noted on both this blog and Concurring Opinions, the proliferation of “personal” electronic data is not without its danger.

The Technology Review article provides a link to another article which points out that RFID technology is also being harnessed to gather social networking information through what is referred to as “reality mining,”

“…a field that Tanzeem Choudhury pioneered as a PhD student at the MIT Media Lab. Working at Intel after graduation, she created a pager-size sensor pack–loaded with software plus microphones, accelerometers, and other data-gathering devices–to collect and analyze data about human interactions and activity. For instance, by processing verbal utterances, she can identify the most influential people in a social network.

Now an assistant professor of computer science at Dartmouth, Choudhury is conducting experiments with the sensor-laden iPhone. Within a few years, she says, simple versions of her software could be available for cell phones.”

Tags: Alzheimer's, Blogs, Concurring Opinions, dementia, Elderly, EMR, Health Policy Community, IT, Privacy, Professional Geriatric Care Manager's Blog, Reality Mining

Prolegomena to Prononymity: What’s the Worst that Can Happen?

January 25, 2009 by Frank Pasquale · 1 Comment
Filed under: Electronic Medical Records, IT, Prescription Drugs

Atlas, Prometheus, & Typhoeus, photo by quapan

America needs electronic medical records (EMR). There are plenty of reasons why we are so far behind other nations in consolidating medical data: lack of strong central leadership on the issue, unwarranted faith in markets to produce solutions, and overwhelmed medical professionals who have little if any slack time to put a new system into place. Even as President Obama pushes for investment in EMR, privacy concerns are also slowing down progress:

Lawmakers, caught in a crossfire of lobbying by the health care industry and consumer groups, have been unable to agree on privacy safeguards that would allow patients to control the use of their medical records. . . . The data in medical records has great potential commercial value. Several companies, for example, buy and sell huge amounts of data on the prescribing habits of doctors, and the information has proved invaluable to pharmaceutical sales representatives.

“Health I.T. without privacy is an excellent way for companies to establish a gold mine of information that can be used to increase profits, promote expensive drugs, cherry-pick patients who are cheaper to insure and market directly to consumers,” said Dr. Deborah C. Peel, coordinator of the Coalition for Patient Privacy, which includes the American Civil Liberties Union among its members.

Health IT turns out to be one many areas where a drive for prononymity–that is, the de-anonymizing of records of on- and off-line life–is running up against a wall of wary citizens and consumers. In the health field, I think that resistance is only going to end if we have a robust “backstop” of health care in place so that citizens don’t have to worry about losing all coverage if a digital dossier presents them as a bad risk. (Medicaid as presently constituted does not count.) Far from overwhelming the health care system with pent-up demand, universal health coverage may be a prerequisite for generating support for the type of EMR that will provide us all with far better care.

A trend to prononymity in general should be matched with greater commitment to assuring that it won’t result in particularly harsh results. For example, people should not be denied a job for being identifiable as a Democrat in a blog post, whatever Monica Goodling thinks. Nor should doctor’s notes about a patient’s dark thoughts come back to haunt the patient when she or he applies for medical insurance. And if they do, there should be a genuine insurer of last resort available–not the patchwork of Medicaid and charity care that presently leave so many uninsured people falling through the cracks.

That’s one reason why I advocate the development of a Fair Reputation Reporting Act, which would allow individuals to know the documentary basis of certain key adverse decisions. I summarize the proposal here:

Reputation regulation has become essential because traditional restrictions on data flows inadequately constrain decisionmakers and important intermediaries (including search engines and bulletin boards). . . . Persistent and searchable databases now feed unprecedented amounts of poorly vetted information into vital decisions about employment, credit, and insurance. Rumors about a person’s sexual orientation (or experiences), health status, incompetence, or nastiness can percolate in blogs and message boards.

Even if the First Amendment and anonymity protect the authors of such rumors, affected individuals deserve to know whether certain important decisionmakers rely on them. In limited cases, the intermediary source of the information should also provide the target of a derogatory posting with the opportunity to annotate it. A Fair Reputation Reporting Act would empower individuals to know the basis of adverse employment, credit, and insurance decisions-and to go to their source (and the source of their salience) to demand some relief from digital scarlet letters.

In summary, privacy concerns are only likely to die down if individuals know either 1) that the consequences of a privacy breach are not likely to be severe or 2) that they can find out instances of the improper use of data. In the health care context in the US, neither qualifier holds: the individual insurance market routinely denies care to individuals on the basis of pre-existing conditions, and individuals have little sense of exactly how such determinations are made. Prononymity needs to work both ways: if our health conditions are to be the subject of increasing availability, so too must the decision-making processes that could use that data to our detriment become more transparent.

PS: Market mavens may promote a “Google Health Search” as the optimal solution here. If this 800 pound gorilla can get all the publishers in line to settle their copyright claims, perhaps it has some chance at bringing the medical industry to heel; however, the political power of doctors and insurers dwarfs that of publishers. The concentration of that much data in one company should also provoke some worries.

Tags: Electronic Medical Records, EMR, Fair Reputation Reporting Act, Health Care Reform, Health IT, IT, Obama, Think Tanks

Dr. David Brailer and Electronic Medical Records: Perhaps the Chairman Doth Protest Too Much

January 18, 2009 by Michael Ricciardelli · 4 Comments
Filed under: Electronic Medical Records, IT

Dr. David J. Brailer, appointed by President Bush in 2004 as the first National Coordinator for Health Information Technology, has written an article for Health Affairs worth reading. Dr. Brailer notes that President-elect Obama “has pledged $50 billion to bring health information tools into widespread use (which is $49,950,000 more than President Bush gave me to spend).” (Note: as the present budget for the office of National Coordinator is a little more than $66 million, I believe Dr. Brailer meant to say that the budget during his tenure was roughly $50 million, which would make Obama’s $50 billion $49,950,000,000 more. Apparently, I’m not the only one confused by billions).

Having said that, Dr. Brailer has some suggestions worth noting, not the least of which is that ensuring structural compatibility and integration of data systems are paramount necessities which will require more than just “hiring the geek squad.” He states

Setting up an electronic health record is a complex task, requiring data integration, clinical algorithms and complex software customization. Likewise, helping physicians and other health care workers learn to work with electronic tools is more than point-and-click training. Electronic health records change the very nature of health care work - clinical decision-making, communications, documentation and learning. Our national transition to digital medicine requires a large supply of specialists - upwards of 50,000 people, including physicians, nurses and pharmacists - who understand both clinical medicine and information technology. It takes years to train these people, and they are already in short supply, so now is the time to start.

I have no contention with the assertion that “setting up an electronic health record is a complex task,” and surely, at the end of a $50 billion investment no one wants to look up to see a Med e-record Tower of Babel. But Dr. Brailer’s assertion that “helping physicians and other health care workers learn to work with electronic tools is more than point-and-click training” is somewhat at odds with recent articles in The NY Times, one of which shows what an electronic medical record looks like and explains how pertinent and potentially life saving information “is just a few clicks away.”

Dr. Brailer also states that we need to address what he characterizes as

…the growing chasm between the physicians and hospitals that have electronic records and those that do not. Most large and urban hospitals as well as larger physician practices are far along in using electronic health records. Rural hospitals, nursing homes and small physician practices lag far behind. They face many barriers, but foremost among them is the lack of capital to purchase and implement information tools.

Dr. Brailer states that “Sales pipelines and hospital and physician budgets show that electronic health record purchases have slowed, indicating that the market wave has gone as far as it can. Now is the time for government incentives to help along those who do not have these systems.”

But Brailer wants to incentivize the “use” of electronic medical records much in the way that Congress has done so regarding “electronic prescribing.” He states: “Medicare pays physicians a 2% bonus for using eprescribing on appropriate patients starting in 2009, and this incentive converts to a 3% penalty for those who do not eprescribe in 2013.”

Of course, Brailer is right to make the distinction between “purchase” and “use.” No one wants to subsidize a high tech, dust gathering coat rack. He makes the point that “We should not incent physicians and hospitals simply to purchase electronic records. We get no benefit when a physician or hospital buys an electronic record. What we should do is reward the use of these tools as part of a patient’s care.”

What he fails to address, however, in this incremental ROI “pay for use” approach is what he characterizes as the “foremost barrier” to those “Rural hospitals, nursing homes and small physician practices” on the other side of e-med record chasm: initial capital outlay.

Considering the financial difficulties of many hospitals-and the chilled credit markets- it is somewhat difficult to envision how the gradual return on investment through “pay for use” will offer great affect for those medical service providers who, at present, have a “lack of capital to purchase and implement information tools.” It is not, however, hard to envision how such a continuous “pay for use” incentive would benefit those larger providers who have already implemented electronic medical record systems.

Additional payments each time they used what they have already invested in would, no doubt, provide an additional dividend which these typically larger providers would greatly appreciate. It is not at all clear, however, that such a program, requiring significant investments of capital-which may well not be available at this time-will lessen the “chasm” by any great measure.

The New York Times has reported that

For most doctors, who work in small practices, an investment in electronic health records looks simply like a cost for which they will not be reimbursed. That is why policy experts say any government financial incentives to use electronic records - matching grants or other subsidies - should be focused on practices with 10 or fewer doctors, which still account for three-fourths of all doctors in this country. Only about 17 percent of the nation’s physicians are using computerized patient records, according to a government-sponsored survey published in The New England Journal Of Medicine.

The Times also reports that those who are presently using electronic medical records tend to be part of larger health care organizations.

No longer the National Coordinator for Health Information Technology, Dr. Brailer is now the Chairman of Health Evolution Partners; it is a health care investment fund:

“Health Evolution Partners invests in the world’s leading health care companies. We seek out companies that are driving critical shifts in how health care is financed, organized and delivered.”

….We use these assets to help our portfolio companies:

Build strategies with unusually high potential
Navigate and mitigate business, policy and regulatory risks
Develop and shape the market for their products and services
Enhance the growth and returns for their shareholders

Tags: Billions, David Brailer, Electronic Medical Records, EMR, Health Affairs, Health Evolution Partners, Health IT, Health Policy Community, Industry Sources, National Newspapers & Media

Electronic Medical Records: What They Look Like, What They Can Do

December 28, 2008 by Michael Ricciardelli · Leave a Comment
Filed under: Electronic Medical Records, IT

The Obama administration has stated that the institution of electronic medical records will play a role in its forthcoming efforts to reform health care in the United States. According to the NY Times, “During the campaign, Mr. Obama vowed to spend $50 billion over five years to spur the adoption of electronic health records and said recently that a program to accelerate their use would be part of his stimulus package.” Max Baucus, Senate Finance Committee Chairman, has stated that the stimulus package will likely include grants and tax breaks for doctors and hospitals to invest in health IT. The Washington Post has reported that its sources “cited $10 billion as a potential figure for health IT in the stimulus package.” In addition, CMS has modified its Medicaid and Medicare reimbursement payments to include a 2% incentive to encourage hospitals to upgrade their records systems with health IT and a 2% penalty within two years for hospitals that do not adopt health IT.

The NY Times has run an article featuring the use, efficacy, and potential of electronic medical records. The article also features an example of what an electronic medical record looks like.

For a number of reasons, the article is well worth a read. Find it here.

Tags: Electronic Medical Records, EMR, Health IT, Medicaid, Medicare, National Newspapers & Media, stimulus package

e-Prescriptions Increase as Medicare Incentive is About to Take Effect

December 16, 2008 by Michael Ricciardelli · Leave a Comment
Filed under: Drugs & Medical Devices, Electronic Medical Records, IT, Pharma

The AP reports that in “December 2007, 35,000 doctors were writing at least some paperless prescriptions, according to SureScripts-RxHub, which tracks the drugstore network.
The 2008 count isn’t finished yet, but SureScripts estimates that number has doubled to more than 70,000. Moreover, the volume of prescriptions filled electronically grew about 15 percent a month since August, faster than the 5 percent to 8 percent monthly increase seen earlier in the year - presumably as doctors geared up for the Medicare incentive.” Read more here.

Tags: Drug & Device, Electronic Medical Records, EMR, IT, Medicare, National Newspapers & Media, Pharma

Recent Posts

Reorganization of UMDNJ to be Implemented this Year

Navigating the New Field of International Health Law, Featuring Gian Luca Burci, Legal Counsel for WHO

Research, the Avian Flu and Bioterrorism

Bill Requiring Licensure of One-Room Ambulatory Surgery Centers In New Jersey Dies in Gov. Christie’s Pocket

Online Graduate Certificate Programs

Professor Frank Pasquale featured in The Record on ‘A Constitutional Right to Health Care’

New Evidence on Smoking Marijuana and Lung Function; Update on New Jersey’s Nascent Medical Marijuana Program

The Good News is that Health Care Spending is Down

Medicare Payment, a System in Need of Fixing

The Needle (Exchange) and the Damage Done

Physician Payment Sunshine Act Proposed Regulations Out

Of provident kidney stones, health insurance and a CT Scan that may have saved my life

Defining Essential Health Benefits

The Nirvana Fallacy Among Health Care Cost Cutters

Money Out of Politics?

Venture Capitalists Complain of ‘Regulatory Challenges,’ FDA Responds

Will Durant, The Story of Civilization, and Immunization and Human Subject Research, or “I Never Promised You a Rose Garden”

A Call for Improved Guidance on Research with Pregnant Women

Secret Prices: Free Market Triumph or Tragedy?

Update Report, Africa Surgery, Inc., Tom Johnson, Jr., Sierra Leone, December, 2011.

Dr. Donald M. Berwick, Formerly of CMS: an Exit Interview Worth Considering

School-based Health Centers, Mental Health Care and the ACA

Recommended Reading: Recent Scholarship on Drug and Device Regulation

Recent Comparative Studies of Health Systems

Health Affairs on Community Development

Constitutional Mortality: Precedential Effects of Striking the Individual Mandate

Still Alive and Well

A Constitutional Right Not to be Bankrupted by Health Care Costs

Does the Fee Imposed by Section 9010 of the Affordable Care Act Apply to Stop-Loss Coverage?

The Global Burden of Stillbirth

Are Fat Taxes All the New Rage?

Places Cited

Posts from Health Reform Watch have been cited by media sources throughout the country, including The New York Times, Washington Post, L.A. Times, Kaiser Health News, The Health Care Blog, NPR's Planet Money Blog, Duke Univ. Med. Center News, American Health Line Alerts, BusinessWeek.com, Concurring Opinions, Balkinization, The New England Journal of Medicine, Harvard's Nieman Foundation for Journalism, Las Vegas Sun, Maggie Mahar, Ezra Klein, Tom Geoghegan, and the official homepage of the Office of the Democratic Majority Leader of the House of Representatives, Steny Hoyer.
Recent Comments
Audio Presentations

Click on the blue links to play, click again to pause:
Hatch-Waxman "Pay for Delay Audio: Panelists included Michael Kades, Attorney Advisor, Federal Trade Commission; Charles A. Gallia, Counsel, Gibbons P.C.; Anastasia Winslow, Assistant General Counsel, Bristol-Myers Squibb; and David Opderbeck, Associate Professor of Law and Director, Gibbons Institute of Law, Science & Technology.
Hunt Lecture: From the original post: During his week-long visit to Seton Hall Law School, Paul Hunt, Professor of Law, University of Essex School of Law, provided several lectures to students and faculty ...Read More
Maizel Lecture: From the original post: A noted expert in the restructuring of health care business debts, both in and out of court, Sam Maizel treated Seton Hall to a one hour crash course on the fiscal crisis ...Read More
PPACA Discussion: From the original post: On Friday, April 9th, Seton Hall was treated to an expert round table discussion on the new health reform measures. Visiting professor Tim Greaney ...Read More
Kaiser
The Commonwealth Fund
- Achieving Equity in the Health System: The Commonwealth Fund's Vulnerable Populations Program
  Vulnerable populations have more difficulty obtaining health care, receive worse care, and experience poorer health outcomes than other groups. This blog post looks at the new Vulnerable Populations program, which aims to help achieve equity in the U.S. health system.
- Incorporating INTERACT II Clinical Decision Support Tools into Nursing Home Health Information Technology
  This Commonwealth Fund–supported study examined some of the steps necessary to incorporate the the INTERACT clinical transition tools into nursing homes' health information technology systems.
- Wellness Incentives, Equity, and the Five Groups Problem
  This Commonwealth Fund–supported study explores the equity concerns associated with wellness incentives, an increasingly popular way for employers to encourage participation in prevention programs, which can both improve workers' overall health and reduce costs.
- Paying for "End-of-Life" Drugs in Australia, Germany, and the United Kingdom: Balancing Policy, Pragmatism, and Societal Values
  This brief analyzes British, Australian,and German policies on coverage of "end-of-life" drugs.
- Bending the Health Care Cost Curve: New Era in American Health Care?
  Health care spending in 2009 and 2010 grew at the slowest rates in 50 years. This startling news was largely attributed to the shrinking economy. In a new blog post, Commonwealth Fund president Karen Davis suggests that lower longer-term projections point to a shift in the health system.
RWJF Health Reform News
- Digital Doctoring
  Among the most common reasons why people come to an emergency room are bouts of heart failure or pneumonia. Note: Viewing this article may require a subscription.
- Study: Hospitals Overpay for Devices
  Some hospitals pay thousands of dollars more than others for big-ticket medical devices such as defibrillators and hip replacements, and a portion of the higher costs could be passed on to the federal Medicare program, a new government report says. Note: Viewing this article may require a subscription.
- Health Care Payers Push Back Against Costs
  In a paper, “Divide et Impera: Protecting the Growth of Health Care Incomes (Costs),” published this month in the British journal Health Economics, I summarize themes touched on here and there in several earlier posts on this blog.
- Taking Another Shot At The Flu Vaccine
  Despite nearly 20 years of recommendations that health workers get flu shots, the most recent data from the Centers for Disease Control and Prevention show that less than 64 percent of them do. Consumer and business groups met in Washington Thursday to show their support for a recommendation from the National Business Group on Health (NBGH) that hospitals re […]
- Cervical Cancer: There's An App for That
  When Mary Jo Payne hears about efforts to educate the public about cervical cancer, she thinks back to her own encounter with the disease at age 38.
ACA Litigation Blog
NY Times Health Policy
- Komen Reverses Stance on Planned Parenthood Grants
  The Susan G. Komen for the Cure foundation apologized for its decision to cut grants to Planned Parenthood for cancer screening and said it would restore the funding.
- The Texas Tribune: Texans Lead Battle for Women’s Health
  In the skirmish between Susan G. Komen for the Cure and Planned Parenthood that intensified over the past week, all roads led to Texas.
- National Briefing | Health: Officials Recommend the HPV Vaccine for All Boys
  Federal health officials recommended on Thursday that all boys be routinely vaccinated against infection with human papillomavirus, or HPV.
- F.D.A. Approves Cystic Fibrosis Drug
  The Food and Drug Administration called Kalydeco a “breakthrough therapy” because it treats the underlying cause of the genetic disease, rather than just the symptoms.
- Non-Specialists Expand Into Lucrative Cosmetic Surgery Procedures
  With declining insurance reimbursements, more doctors are expanding their practices to include things like breast augmentation and liposuction paid for out-of-pocket by patients.
WaPo Health
- Redskin London Fletcher’s fitness regimen
  Let’s say your job is to take off at a sprint, get moving about 20 mph and slam yourself full speed into a brick wall — 60 times in a single afternoon. We’d give you a helmet and lots of padding to protect yourself. Because of the toll this would take on your body, we’d make you do it only once a week. And we’d reward you handsomely. Read full art […]
- Keep your New Year’s fitness resolution without hitting the gym
  This is it. This is the year you finally get in shape, shed those pounds or meet that fitness pledge you made at 11:59 p.m. on Dec. 31. But do you have to build the new you in a hot, stuffy gym, cheek by jiggly jowl with a dozen other sweaty resolutionaries awaiting their turn on the elliptical machine? Read full article >>
- My workplace fitness resolution
  I’m not saying my co-workers are fat. In fact, a fair number of them are toothpick skinny — including, unfairly, the guy who brings in his latest cupcake creation every other day. Many of them are also super-active, always running, biking and yoga-ing in their free time. Read full article >>
- Guys: Stretch now or pay later
  Listen up, ladies, because it’s confession time, and as you may know, this is not my gender’s forte. So let’s get this over with: Although we are bigger, stronger and faster than you are, we must acknowledge that when it comes to flexibility, most of us are pretty much outclassed. We aren’t built like you, and we don’ t bend like you do. Read full […]
- Ways to get kids to eat quinoa
  When people ask me to list my favorite healthy foods, quinoa always tops the list. And not just because the National Restaurant Association named it the hottest trend in side dishes in 2010. My boys think I like quinoa because when it was first discovered it was named “the mother grain.” Yes, I am proud to be a mother myself, but check out all the real […]
Fierce Healthcare
- FDA commish counters industry critics on expert conflict rules
  There's been an ongoing debate in biopharma circles over the impact a shortage of drug experts is having on the FDA's panel review process. But anyone looking for the�agency to welcome changes in the rules governing conflicts of interest--which have been keeping some of the experts at bay--can rule out any support from FDA Commissioner Margaret Ham […]
- Scoring winners and losers in Japan pharma M&A bout
  Japan's biggest pharma players have been roaming the world in recent years in a restless search for new acquisitions. They've been looking for deals to put an extra oomph into their earnings. Now The Wall Street Journal is reviewing the biggest buyers and seeing�who scored the juiciest gains, and�who harvested bitter losses. Astellas�Pharma, which […]
- Idenix gets good news on hep C trial, but can't compete with Gilead
  Idenix put out the news this morning that the FDA had lifted a partial hold on its hepatitis C drug IDX184--and then watched its share price slide. In a sign of just how volatile the whole hepatitis C arena has become after back-to-back blockbuster buyouts, the key focus today is on Gilead's ($GILD) surprise acknowledgement that its new hep C favorite s […]
- AstraZeneca's R&D chief in China lays out $100M strategy
  One of the hottest trends in the global R&D business in recent years has been Big Pharma's huge investment in China. Among all the emerging countries, China's massive, fast-growing economy has been a magnet for drug developers determined to tap a whole new market. Steve Yang, AstraZeneca's vice president and head of R&D for Asia and […]
- Gilead shares surge as hep C drug scores a cure for big patient population
  Gilead Sciences ($GILD) received its first bonus from the monster $10.8 billion deal to acquire Pharmasset ($VRUS) after CSO Norbert Bischofberger told analysts yesterday evening that PSI-7977 combined with ribavirin cured a group of genotype 1 hepatitis C patients after four weeks of therapy. The analysts already knew that the same treatment had performed w […]
- Threshold, Merck KGaA strike $525M licensing deal for promising cancer drug
  The dealmakers at South San Francisco-based Threshold Pharmaceuticals ($THLD) have crafted a $525 million licensing pact with Merck KGaA covering its late-stage cancer drug TH-302. Threshold snagged a $25 million upfront, a promise of $35 million in near-term paydays and a $20 million reward if upcoming pancreatic cancer data come in positive. And the biotec […]
- U.S. funding drop threatens San Diego life sciences industry
  The life sciences job juggernaut in metro San Diego expanded through the ongoing economic downturn and will produce another 6,000 jobs through 2014, according to a new report. But a big drop in government science funding and a continued decline in venture funding could threaten future growth. Ominously, grants from the National Institutes of Health to greate […]
- Is Lilly betting the farm on its high-stakes Alzheimer's gamble?
  Now that the patent cliff has arrived right on time for Eli Lilly ($LLY), the big question this year is whether or not its massive gamble on the Alzheimer's drug solanezumab will pay off. That's Reuters' theme as it delves into the murky science involved in trying to treat the memory-wasting ailment. And even the most optimistic projections ca […]
- AB soars on promising survival data from Phase II tumor study
  Shares of Paris-based AB Science shot up yesterday after the drug developer reported strong efficacy results from a midstage study of its experimental drug for gastrointestinal tumors. The treatment, masitinib, not only outperformed Sutent, it also appeared to be better tolerated. Investigators in the trial divvied up 44 Gleevec-resistant, advanced-stage pat […]
- Czechs beef up investment in biotech research
  The Czech Republic is substantially boosting its investment in biotechnology research, with plans to build a massive research center near Prague set to employ 600 people, the Prague Daily Monitor is reporting. Plans call for spending 2.4 billion crowns (more than $120 million U.S.) on the project, with the investment drawn from EU funds. It will take two yea […]
Boston Globe Health Blog
- MIT professor wins prestigious chemistry prize
  By Carolyn Y. Johnson, Globe Staff Robert Langer, a biomedical engineer at MIT best known for his contributions in the fields of tissue engineering and drug delivery, has been named the winner of the 2012 Priestley Medal, a prestigious prize...
- Daily check up: New York Times points to Mass. public opinion on health care mandate as a model
  In an editorial today, the Times says support for the national mandate could follow the recent trend in Mass. and grow
- Brigham and Women's performs face transplant on woman mauled by chimp
  Jonathan Wiggs / Globe Staff Photo Steve Nash, brother of Charla Nash, who received a full face transplant at Brigham and Women's Hospital late last month, appeared at a press conference today with his wife, Kate. Charla Nash did not...
- Poll: Public supports mandatory physical education
  In a survey of 501 Mass. residents, 87 percent said the state should require 30 min. of physical activity each school day
- Immigrant health care back in court
  Immigrant advocates had hoped for a quick decision, but the state plans to file a motion that would delay the process
LA Times Health Blog
Health Affairs Blog
- What Is “Sustainable” Health Spending?
  As we embark upon a presidential campaign season, we can anticipate many lively debates on the topics of taxation and spending in this nation. As health spending in the Unites States accounts for 18 percent of our gross domestic product – a rate often called unsustainable – it is critical that we be clear-eyed in [...]
- Latest Wonk Review Highlights HA Blog Post On Bay State Reform
  At the Colorado Health Care Insider, Louise Norris hosts the latest edition of the Health Wonk Review. Louise includes Sharon Long’s Health Affairs Blog post clarifying the facts about health reform in Massachusetts. Check out Sharon’s post and all the great posts in Louise’s Wonk Review.
- Trusting Government: A Tale Of Two Federal Advisory Groups
  Americans increasingly distrust what they perceive as poorly run and conflicted government. Yet rarely can we see far enough inside the federal apparatus to examine what works and what doesn’t, or to inspect how good and bad decisions come to pass. Comparing the behaviors of two influential federal advisory bodies provides valuable lessons about how [...]
- Passing The Torch: A Day In The Life Of An Attending Physician
  November 9, 2011. Time fell back three days ago, leaving me one less hour of daylight to enjoy on a gorgeous Indian summer Wednesday. I’m the attending physician on a busy family medicine inpatient service, and it’s been a long week of patient care and meetings. I rush out of the hospital somewhere near 5 pm, [...]
- Health Policy Briefs: Accountable Care Organizations
  In April 2012 a number of accountable care organizations (ACOs) will begin their contracts with the Centers for Medicare and Medicaid Services (CMS) under Medicare’s Shared Savings and Pioneer ACO programs. The latest health policy brief from Health Affairs and the Robert Wood Johnson Foundation provides an overview of ACOs, their origins, and the current […]

Center News, Programs & Papers

Livestream Podcast, Seton Hall Law Review ACO Symposium

Symposium: Implementing the Affordable Care Act: What Role for Accountable Care Organizations?

Distinguished Guest Practitioner Mark Swearingen Lectures on Trends in Healthcare Law Enforcement

Online Graduate Certificate Program in Pharmaceutical & Medical Device Law to Begin in May 2011

New Jersey’s Commissioner of Health and Senior Services Discusses Medical Marijuana and Two Other Regulatory “Case Studies” at Seton Hall Law

The Limits of Disclosure as a Response to Finanacial Conflicts of Interest in Clinical Research

Fourth Annual Student Health Law Conference To Be Held at Seton Hall Law on October 22nd

Seton Hall University School of Law Launches European Healthcare Compliance Certification Programme in Paris

Seton Hall Law Announces Frank Pasquale as the Schering-Plough Professor in Health Care Regulation and Enforcement

Former UN Special Rapporteur Paul Hunt on International Law & Health as a Human Right & the Human Rights Responsibilities of Pharmaceutical Companies

Recording of Sam Maizel’s Discussion of Distressed Hospitals

Recording of Professors Tim Greaney, John Jacobi, Frank Pasquale, and Sidney Watson Discussing Health Reform

Seton Hall Announces Summer Study Abroad International Health Law Program

Online Graduate Certificate Program in Health & Hospital Law to Launch in April 2010

Seton Hall Law School’s Center for Health & Pharmaceutical Law & Policy Issues White Paper Calling for Major Reforms in the Financing and Oversight of Clinical Research

Risks to Directors and Trustees of Health Care & Life Sciences Companies: Corporate Compliance in a Distressed Economy

Third Annual Student Health Law Conference, Friday, October 16th at Seton Hall Law

Position Paper In Support of the “New Jersey Compassionate Use Medical Marijuana Act”

Seton Hall Law School’s Center for Health & Pharmaceutical Law & Policy Releases White Paper Recommending Reform of Drug and Device Promotion

Tags
Accountable Care Organizations ACO Center for Health and Pharmaceutical Law & Policy Chronic Conditions CMS Conflicts of Interest Constitutional Cost Control Drug & Device Drug and Device Electronic Medical Records EMR FDA Health Care Health Care Reform Health Economics Health Law Health Policy Community Health Reform HHS HIT Hospital Finances Individual Mandate Medicaid Medical Malpractice Medicare National Newspapers & Media Obama Administration Pharma pharmaceutical industry Physician Compensation PPACA Prescription Drugs Private Insurance Proposed Legislation Public Health Public Option Public Plan Quality Improvement Reform Rodeo Seton Hall Law State Initiatives Think Tanks Unconstitutional Uninsured
Meta

Photo credits to Aleksandar Šušnjar, Jakub Halun and loki11.

Acronym

Phrase

General Definition (see 160.103 for regulatory language)

PHI

Protected Health Information

Any oral or recorded information relating to any past, present, or future physical or mental health of an individual, provision of healthcare to the individual, or the payment for the healthcare of that individual.

CE

Covered Entity

BA

Business Associate

Individuals or organizations performing an activity involving the use or disclosure of PHI on behalf of the CE. BAs can include attorneys, accountants, shredding companies, billing companies, or any other person or organization that is not a CE but which is accessing a CE’s PHI.

EHR

Electronic Health Record

An electronic record of patient care comprised of information about the delivery of care, including demographic information, medications, diagnoses, etc.

PHR

Personal Health Record

An electronic record of patient care comprised of much of the same information that an EHR is comprised of, but which is created and maintained by the individual (usually a patient) as opposed to a provider. Prominent examples are Google Health and Microsoft HealthVault

d

Recent Posts

Categories

Health Reform Law (PPACA) Complete Text

News Sources

Noteworthy Blogs

Of Interest

Resources

Wordpress

Places Cited

Recent Comments

Audio Presentations

Center News, Programs & Papers

Tags

Meta

General Definition
(see 160.103 for regulatory language)