Privacy issues pose ongoing challenge to HIEs

A computer mouse sitting on computer code

The legal and ethical aspects of healthcare data sharing have long been a concern for Valita Fredland, recently named vice president and general counsel and privacy officer at the Indiana Health Information Exchange (IHIE).

"I think big data raises important ethical and legal questions that in some cases haven't yet been well addressed by regulatory frameworks," she tells HealthITSecurity.com. "It's hard to anticipate some of the things that we're able to do with big data until we've done it. One then has to ask, 'Well, was that the right thing to do with it?'"

She points to the tension created in the federal push to share data and at the same time protect the privacy and security of that information.

Webinar This Week

Curating a Higher Level of Personalized Care: Digital Health + Mom

A long-term digital health strategy is needed to respond to the technology demands of the modern patient while thriving as an independent hospital in a fiercely competitive market. In this webinar, Overlake and one of its digital health partners, Wildflower Health, will discuss how Overlake has approached digital health and why it chose to focus early efforts on expectant moms within its patient population.

"Privacy officers find themselves right in the middle of that tension," says Fredland, who holds a masters degree in clinical biomedical ethics as well as a law degree.

Creating a privacy and security framework that covers exchanged data over multiple jurisdictions will be a big issue for HIEs in the immediate future, she says.

Tracking the rights and permissions associated with various bits of data poses a particular challenge for blended databases and big data initiatives. With data coming from disparate sources, information collected on a website, for instance, might have a different privacy policy than that collected in other ways.

Organizations need a multi-faceted strategy for protecting data, Fredland says, that includes a rigorous bring-your-own-device strategy, continuous employee education, good technical security infrastructure and a clearly established security policy.

To learn more:
- here's the article

Suggested Articles

Blue Cross Blue Shield of Massachusetts will integrate Amazon’s PillPack into its member app.

The U.S. Justice Department will review plans by Google to buy Fitbit for possible antitrust issues, according to multiple media reports.

U.S. primary care physicians are lagging behind their international peers on data sharing and lack access to technology tools, a new study finds.