Overview of the Connecting for Health Common Framework Privacy and Confidentiality Workshop eHealth Initiative and Vanderbilt Center for Better Health.

Slides:



Advertisements
Similar presentations
Georgia Department of Community Health
Advertisements

Manatt manatt | phelps | phillips New York State Health Information Technology Summit Initiative Overview and Update Rachel Block, Project Director United.
A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.
ELTSS Alignment to Nationwide Interoperability Roadmap DRAFT: For Stakeholder Consideration in response to public comment.
Presented by Elena Chan, UCSF Pharm.D. Candidate Tiffany Jew, USC Pharm.D. Candidate March 14, 2007 P HARMACEUTICAL C ONSULTANTS, I NC. P RO P HARMA HIPAA.
Identity Management In A Federated Environment Identity Protection and Management Conference Presented by Samuel P. Jenkins, Director Defense Privacy and.
Cracking the Code on Nationwide Interoperability DISCLAIMER: The views and opinions expressed in this presentation are those of the author and do not necessarily.
Virginia Association of Free and Charitable Clinics _______________________ March 15, 2013 Sandy McCleaf, Executive Director ConnectVirginia.
July 3, 2015 New HIE Capabilities Enable Breakthroughs In Connected And Coordinated Care Delivery. January 8, 2015 Charissa Fotinos.
Informed Consent and HIPAA Tim Noe Coordinating Center.
Taking Steps to Protect Privacy A presentation to Hamilton-area Physiotherapy Managers by Bob Spence Communications Co-ordinator Office of the Ontario.
Inter-institutional Data Sharing, Standards and Legal Arthur Davidson, MD, MSPH Agency for Healthcare Research and Quality, Washington, DC June 9, 2005.
A Robust Health Data Infrastructure P. Jon White, MD Director, Health IT Agency for Healthcare Research and Quality
Tackling the Policy Challenges of Health Information Exchange Carol Diamond, MD, MPH Managing Director, Markle Foundation.
Navigating Privacy and Security Issues for HIE: A Consumer Perspective Deven McGraw Chief Operating Officer National Partnership for Women & Families
HIE Implementation in Michigan for Improved Health As approved by the Michigan Health Information Technology Commission on March 4, 2009.
©2004 CSC Proprietary www.csc.comCSC Proprietary 9/4/ :07:55 AM 008_5849_ER_WHITE 1 Health Information Sharing: Case Studies.
1 Get Ready to RHIO Health Information Exchanges and Emergency Preparedness Jeff Odell, Senior Vice President MedVirginia x227
Presented by Lygeia Ricciardi and Melissa Goldstein, of the Markle Foundation, Vicki Estrin from the Vanderbilit Center for Better Health and Marc Overhage.
1 Manatt Health Solutions NYS Office of Health Information Technology Transformation Academy Health State Health Research and Policy Interest Group 2008.
Connecting for Health: Common Framework. 2 What is Connecting for Health? Broad-based, public-private coalition More than 100 collaborators –Providers.
Chapter 6 – Data Handling and EPR. Electronic Health Record Systems: Government Initiatives and Public/Private Partnerships EHR is systematic collection.
RIDE ConsortiumRIDE Workshop, December 8, 2006, Brussels 1 The RIDE Roadmap Methodology and the Current Progress Prof. Dr. Asuman Dogac, Turkey Dr. Jos.
ONCHIT – 3 NHIN Prototype and other Initiatives for Kentucky Kentucky e-Health Network Claudine Beron February 21, 2006.
1 Consolidated Health Informatics Public Health Data Standards Consortium March 17, 2004.
Access Control for Health Applications EHI Connecting Communities Forum April 11, 2006 Don Grodecki Browsersoft, Inc.
Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.
The Paradox in HIPAA Deven McGraw, JD, MPH, LLM Partner Manatt, Phelps & Phillips, LLP December 8, 2014.
1 Technical Overview of the Common Framework HIT Symposium at MIT J. Marc Overhage, MD, PhD Regenstrief Institute Indiana University School of Medicine.
Policies for Information Sharing April 10, 2006 Mark Frisse, MD, MBA, MSc Marcy Wilder, JD Janlori Goldman, JD Joseph Heyman, MD.
NHIN Messaging Recommendations EHI Connecting Communities Forum April 10, 2006 Don Grodecki Browsersoft, Inc.
Federal Trade Commission U.S. Rules on Privacy and Data Security Organization for International Investment General Counsel Conference October 16, 2009.
January 26, 2007 State Alliance for e-Health January 26, 2007 Robert M. Kolodner, MD Interim National Coordinator Office of the National Coordinator for.
September, 2005Cardio - June 2007 IHE for Regional Health Information Networks Cardiology Uses.
Final Project – Health Information Exchange: Technology, Challenges & Opportunities Group 3 Gary Brown, Michelle Burke, Kazi Russell MMI 402 Fall 2013.
Privacy and Security Solutions For Interoperable Health Information Exchange Presented by Linda Dimitropoulos, PhD RTI International Presented at AHRQ.
Consumer Authentication for Networked Personal Health Information Redwood Health Information Collaborative March 18, 2008 Josh Lemieux Director, Personal.
HIPAA Summit XII Role of HIPAA Compliance in HIT Initiatives Bill Braithwaite, MD, PhD eHealth Initiative April 11, 2006
Kevin W. Ryan JD, MA Associate Director – ACHI Assistant Professor – UAMS COPH Rural TeleCon ’06 10th Annual Conference of the Rural Telecommunications.
©2006 CSC and Connecting for Health Proprietary. An Overview of Contracts to Develop a Nationwide Health Information Network – The CSC Connecting for Health.
Mariann Yeager, NHIN Policy and Governance Lead (Contractor) Office of the National Coordinator for Health IT David Riley, CONNECT Lead (Contractor) Federal.
HIT Policy Committee NHIN Workgroup HIE Trust Framework: HIE Trust Framework: Essential Components for Trust April 21, 2010 David Lansky, Chair Farzad.
1 Overview of HIT Policy Committee’s Privacy Hearing Jodi Daniel, JD, MPH Director, Office of Policy and Research Office of the National Coordinator for.
Copyright © 2015 by Saunders, an imprint of Elsevier Inc. All rights reserved. Chapter 3 Privacy, Confidentiality, and Security.
Moving the National Health Information Technology Agenda Forward The Fourth Health Information Technology Summit March 28, 2007 Robert M. Kolodner, MD.
HIT Policy Committee Meeting Nationwide Health Information Network Governance June 25, 2010 Mary Jo Deering, PhD ONC, Office of Policy and Planning NHIN.
How Including HIPAA Transaction Sets in RHIO Architecture can Help Fund Clinical Information Exchange Fred Richards, CTO/Co-Founder April 10, 2006.
Connecting for Health Common Framework: the Model Contract for Health Information Exchange Gerry Hinkley com July 18, 2006 Davis Wright.
S ecure A rchitecture F or E xchanging Health Information in Central Massachusetts Larry Garber, M.D. Peggy Preusse, R.N. June 9 th, 2005.
Overview of the Connecting for Health Common Framework MIT HIT Symposium Carol Diamond MD, MPH Markle Foundation.
 All lines are muted during presentation.  Lines are un-muted during Q&A ◦ If not asking question, please mute your line  *6 to mute your phone  *7.
1 CDC Health Information Exchange (HIE) Accelerating State-wide Public Health Situational Awareness in New York Through Health Information Exchanges August.
EHI Toolkit for Health Information Exchange Building and Maintaining Policies for Information Sharing Bill Braithwaite, MD, PhD eHealth Initiative
Incorporating Privacy Into Systems Development Methodology Phil Moleski Director Corporate Information Technology Branch Saskatchewan Health
Health Information Security and Privacy Collaborative (HISPC) Overview
Standards and the National HIT Agenda John W. Loonsk, MD
MIT HIT Symposium How HIPAA Applies to HIT
SHARING CLINICAL DATA: Legal and Privacy Issues
Common Framework Implementation:
Overview of the Connecting for Health Common Framework Resources
American Health Information Management Association
Concerns of a Privacy Advocate – and How to Respond
Healthcare Privacy: The Perspective of a Privacy Advocate
Policies for Information Sharing
Paul T. Smith, Esq. Partner, Davis Wright Tremaine LLP
Enforcement and Policy Challenges in Health Information Privacy
THE 13TH NATIONAL HIPAA SUMMIT HEALTH INFORMATION PRIVACY & SECURITY IN SHARED HEALTH RECORD SYSTEMS SEPTEMBER 26, 2006 Paul T. Smith, Esq. Partner,
Introduction to Personal Health Records –
Privacy in Nationwide Health IT
HLN Consulting, LLC® November 8, 2006
Presentation transcript:

Overview of the Connecting for Health Common Framework Privacy and Confidentiality Workshop eHealth Initiative and Vanderbilt Center for Better Health September 12, 2006 Melissa M. Goldstein, JD Director, Markle Foundation

What is Connecting for Health? A public-private collaborative of 100+ organizations representing the vast variety of viewpoints in healthcare (e.g., providers, patients, payers, etc.) A neutral forum Founded & supported by the Markle Foundation Additional support from the Robert Wood Johnson Foundation

What is the Purpose of Connecting for Health? To catalyze changes on a national basis to create an interconnected, electronic health information infrastructure to support better health and healthcare

Sharing Health Information = Linking Existing Sources Health information can stay where it is—with the doctors and others who created it Specific information is shared only when and where it is needed. Sharing does not require an all new “network” or infrastructure Sharing does not require a central database or a national ID Sharing does require a Common Framework

A Common Framework Is Needed The Common Framework is the minimum necessary set of rules or protocols for everyone who shares health information to follow. Helps organizations overcome the barriers without “reinventing the wheel” Enables nationwide interoperability…avoiding isolated islands of information Builds trust

Overview of Connecting for Health Architecture A sub-network organization (SNO) brings together a number of providers and other health information sources They are linked together by contract (more from Gerry) Agree to follow common policies and procedures Agree to create and use a shared index to where patient records are located (RLS) Agree to create and use a common gateway to share information with other networks (ISB)

An index containing patient demographic information and the location of a patient’s medical records Contains no clinical information – obtaining the clinical record is a separate transaction NOT involving the RLS Participating entities decide whether or not to put record locations into the RLS Designed to take a query in the form of demographic details and return only the location of matching records What is a Record Locator Service (RLS)?

How Was the Common Framework Developed? Connecting for Health… Started with Design Principles Wrote a Roadmap in 2004 Built a Prototype Developed the Common Framework through field experience and the collaboration of experts

Technology and Policy are Intertwined Choices about one necessarily shape the other. To build trust, you have to put policy decisions first.

Technical Principles 1.Make it “Thin” 2.Avoid “Rip and Replace” 3.Separate Applications from the Network 4.Decentralization 5.Federation 6.Flexibility 7.Privacy and Security 8.Accuracy

Privacy Principles (more on these later) 1.Openness and Transparency 2.Purpose Specification and Minimization 3.Collection Limitation 4.Use Limitation 5.Individual Participation and Control 6.Data Integrity and Quality 7.Security Safeguards and Controls 8.Accountability and Oversight 9.Remedies

The Prototype -Three sites -Boston -Indianapolis -Mendocino County, CA -Diverse architectures -Diverse structures If these 3 can all use the Common Framework…anyone can!

Who Developed the Prototype and the Common Framework? Connecting for Health Steering Group Policy Subcommittee: Co-Chairs Bill Braithwaite and Mark Frisse Technical Subcommittee: Chaired by Clay Shirky Three communities and teams: –Boston: MA-SHARE and technical partner CSC –Indianapolis: Regenstrief Institute and Indianapolis Health Information Exchange (IHIE) –Mendocino: Mendocino HRE and technical partner Browsersoft, Inc.

What Do the Common Framework Resources Consist of? Technical rules and standards—that allow systems to “talk to” each other Policies on how to handle information– that build trust Model contractual language—that holds it all together

Sample Policy Documents From P8 – Breaches, p. 4 Sample policy language CFH Recommended policy From M2 – Model Contract, p. 10

Sample Technical Documents (T2)

What is Available? Technical Documentation: 3 Categories 1.Background Documents –T6: Record Locator Service Design –T5: Data “Cleanliness” and Quality 2.Specific Technical Documents –T1: Technical Overview and Implementation Requirements –T2: NHIN Message Implementation Guide (Record Locator Service/Inter-SNO Bridge) –T3-T4: Standards Guides Medication History: Adapted NCPDP SCRIPT Laboratory Results: ELINCS 2.0, with modifications 3.Technical Code and Interfaces –Test Interfaces: CA, IN, MA –Code base: CA, IN, MA

What is Available? Policy Documents: 3 Categories 1.Background Document –P1: Privacy Architecture for a Networked Health Care Environment 2.Specific Policy Documents –P2-P8: Model privacy policies, notification and consent, correctly matching, authentication, patient access, audits, and breaches 3.Sample Contract Language –M1: Contact Topic List –M2: Model Contract

The Common Framework is Not a “RHIO in a box” It provides different models to consider—not one “right answer.” It is intended as a partial solution. It does not address finance, governance, etc. There are topics (like how to aggregate data for research and public health) that Connecting for Health is still working on…

The Common Framework is Still Evolving Improving the resources to better meet the needs of communities Exploring how patients/consumers can access their own information Exploring how researchers and public health can benefit from health data Connecting for Health needs the input of organizations nationwide….

A Bit More on Privacy and Networked Environments In a Networked Environment: Persistent and Aggregated “Data Shadow” Increased RISKS (mis-use and re-use; not dealt with through consent) Privacy Protective Behavior: Opt-out of the system Demands a systemic privacy protection architecture (fair information practices) to mitigate the risks and establish trust 22

Healthcare is Different The healthcare system is very diverse Health information is especially sensitive— and privacy spills can’t be “fixed” Patients/consumers are traditionally less involved than in some other areas (e.g., banking)

Openness Purpose Specification Collection Limitation Use Limitation Individual Participation and Control Remedies Accountability Security Data Integrity Connecting for Health Architecture for Privacy in a Networked Health Environment 24

Common Framework Resources All available free at Policy and technical guides, model contractual language Registration for AHRQ/NRC Common Framework discussion forum Software code from regional prototype sites: Regenstrief, MAShare, OpenHRE to

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.