Posted by: GuyPardon
CCO, compliance, consent management, e-health, ECPA, Enterprise 2.0, healthcare IT, HHS, HIPAA, IT compliance, podcast
What is the state of IT healthcare compliance in 2009? Dr. William Yasnoff has some thoughts.
His reply to ” Healthcare compliance gets boost from national HHS privacy framework,” a recent tip from one of SearchCompliance.com’s sister sites, demonstrated his deep understanding of the complex relationships among regulations, medicine and IT. A quick visit to his blog at WilliamYasnoff.com will confirm that he’s thought long and hard about the role of IT infrastructure in assuring patient privacy and health. SearchCompliance.com’s Alexander B. Howard found Dr. Yasnoff at his office last week and recorded a podcast.
When you listen, you’ll learn the answers to the following questions about e-health, including what changes might be expected under the new Obama administration:
- The United States Department of Health and Human Services (HHS) has a released a new privacy framework that provides guidance to organizations that handle personal health information. Does the Health Insurance Portability and Accountability Act (HIPAA) apply? What are the privacy and data protection issues created by the movement to e-health records?
- How does this directive affect IT compliance officers or system administrators at companies that handle e-health records? How could — and how should — a compliance officer change IT infrastructure and best practices to address the so-called HIPAA “audit hole?”
- The incoming Obama administration made the digitization of health records a focus of its presidential campaign. How may the atmosphere around healthcare compliance change? What additional regulatory requirements may be introduced that compliance officers should consider?
- What is Dossia? What role might this new entity, funded by corporations, play in e-health? How could Dossia affect e-health compliance? What is a health records bank? How many physicians currently use e-health records?
- What is the Electronic Communications Privacy Act (ECPA)? What must a CIO, CTO, CCO or IT administrator do to remain in compliance with the ECPA?
- What are some best practices for setting up IT infrastructure for healthcare institutions so that the systems are compliant? How will consent management factor into compliance in 2009?
- How might emerging enterprise 2.0 technologies be adapted and applied by the incoming U.S. CTO, particularly with regards to e-health records?
|William A. Yasnoff is founder and managing partner of National Health Information Infrastructure (NHII) Advisors, a consulting firm that helps communities and organizations successfully develop health information infrastructure systems and solutions. Previously, as senior advisor, NHII, Department of Health and Human Services, he initiated and organized the activities leading to the president’s creation of the Office of the National Coordinator for Health Information Technology, establishing the NHII as a widely recognized goal for the nation.
As vice president of research for Cell Analysis Systems Inc., he developed the first PC-based commercial system for quantifying DNA content of cells on slides in 1986. He later served as medical director of AMA/Net, the American Medical Association’s first online electronic information system for physicians. He subsequently restarted the network as U.S. HealthLink in Oregon.
Dr. Yasnoff is an associate editor of the Journal of Biomedical Informatics, adjunct professor of Health Sciences Informatics at The Johns Hopkins University, a board member of the nonprofit Public Health Foundation Enterprises Inc., and the author of more than 250 publications and presentations, including co-editor of the textbook ‘Public Health Informatics and Information Systems.’ He earned his Ph.D. in computer science and M.D. from Northwestern University, and was elected a fellow of the American College of Medical Informatics in 1989.