EMR and HIPAA

URMC Faces Third HIPAA Breach

The University of Rochester Medical Center has seen a third HIPAA breach, this one caused by the loss of an unencrypted USB drive by a physician, reports Healthcare IT News. The drive, which belonged to a resident, contained protected health information on 537 patients.

Officials with URMC say they have notified the 537 former orthopedic patients whose information was lost on the drive. Lost information included patients’ names, genders, ages, dates of birth, telephone numbers, medical record numbers, and more, though it didn’t include addresses, Social Security numbers or insurance information.

According to Healthcare IT News, the resident’s unencrypted, unprotected drive runs counter to URMC’s campus-wide policy. URMC requires physicians and staff to use only encrypted drives — the only kind which are stored in its on-campus computer center. The latest URMC security policy also requires all mobile devices to be password protected, encrypted, and to have a time-out if unattended.

In an effort to make sure further security breaches don’t occur, the health organization is re-educating its faculty and staff on its security policy, and plans an annual education series to reinforce this training, a hospital spokesperson told Healthcare IT News.

This is URMC’s third data breach involving more than 500 patients reported to HHS, the magazine reports. The previous two breaches, which involved PHI for nearly 3,500 patients, both took place in 2010. One of the two involved the loss of an encrypted portable electronic device.

National Nurses Day Tribute

Written by: John Lynn

Today is National Nurses Day and this week is a celebration of all the amazing nurses in healthcare. I think nurses are the unsung heroes of healthcare. They do an extraordinary job and get very little recognition.

When I think about EMR in general it impacts nurses as much or more than anyone in the clinic. Yet in most cases, nurses have very little involvement in the EMR purchase process. Sure, most places do some sort of meeting with the nurses and they take a little feedback from them, but from my experience they have little involvement in which EMR is chosen.

This means that most nurses just have to deal with whatever EMR their clinic or hospital chooses. Most of them do it with the grace of a nurse.

My favorite nurse story comes from my experience with this wonderful nurse I worked with named Shelley. She is a vivacious and passionate nurse that loved her job. She wasn’t afraid to tell you what she really thought and had a heart as big as I’ve ever seen. Plus, she gave the best bear hugs!

When it came to the idea of going to EMR, Shelley was one of the biggest critics. She was not looking forward to the change and was vocal about it. Despite her and others fear of EMR, we pressed forward. One of the very first days after we implemented the EMR I came into the nurses station where I saw one of the nurses struggling with some EMR function. Next thing I know, EMR averse Shelley is reaching over the nurse’s shoulder and teaching her how to fix her EMR problem. It became a kind of running joke in the clinic that Shelley could go from EMR critic to EMR trainer.

I think this highlights the beauty of so many nurses. First, the ability to adapt to challenging situations. Second, the concern and care for fellow nurses and patients. Shelley was such a great representative of nursing to me.

On this National Nurses Day, I want to honor my friend Shelley and all the other caring, professional, wonderful nurses out there. This video from RWJF highlights the greatness of nurses.

Post a Comment(0)

May 6, 2013 I Written By John Lynn

John Lynn is the Founder of the HealthcareScene.com blog network which currently consists of 15 blogs containing almost 5000 articles with John having written over 2000 of the articles himself. These EMR and Healthcare IT related articles have been viewed over 9.3 million times. John also recently launched two new companies: InfluentialNetworks.com and Physia.com, and is an advisor to docBeat. John is highly involved in social media, and in addition to his blogs can also be found on Twitter: @techguy and @ehrandhit.

Filed Under: EHR Electronic Health Record Electronic Medical Record EMR Healthcare HealthCare IT

Tags:EMR Implementation EMR Trainer National Nurses Day Nurses Nursing RWJF

EHRMagic, EHR Certification, and the Great EHR Switch — #HITsm Chat Highlights

Written by: Katie

Topic One: What lessons can be learned from the ONC’s decision to revoke #EHR Incentive Program certification of EHRMagic? #HealthIT

T1 Providers MUST do their due diligence when it comes to EMRs! Vet vendors with specific criteria to ensure stability/credibility. #HITsm

— Jennifer Dennard (@SmyrnaGirl) May 3, 2013

A1: Huge consolidation in the EHR space pending – we have almost 400 vendors that have 1 MU (attested) customer = unsustainable #hitsm — Dan Munro (@danmunro) May 3, 2013

T1: Evolution has it’s misfires? #HITsm — Ryan Lucas (@dz45tr) May 3, 2013

T1 That your #EMR Vendor choice is an important one!#HITSM

— HealthCo(@healthcois) May 3, 2013

Topic Two: Does this action make EHR certification more meaningful or does it reduce confidence in certified products?

T1: Be Educated on what “Meaningful Use” means, so you as the buyer can effectively evaluate #HITSM

— HealthCo(@healthcois) May 3, 2013

T1: I echo the buyer beware comments. If they’re trying to sell you “magic”, I’d definitely put time into due diligence! #hitsm — Janice McCallum (@janicemccallum) May 3, 2013

A2: From a vendor who went through it, the first cert round was a formality. This next round is much more thorough. #HITsm — Sarah Bennight (@sarahbennight) May 3, 2013

T1: Seems as if peer review and referrals should now be biggest drivers of #EHR adoption? Not true? #HITsm

— RightPatient (@RightPatient) May 3, 2013

Topic Three: Who suffers the most from the ONC’s decision? The vendor or the physicians who purchased the product?

A3: I think both are in a world of hurt at this point. But I would argue the physicians. #HITsm

— Sarah Bennight (@sarahbennight) May 3, 2013

T2: Has anyone had confidence in EHR certification in the past?EHR Certification has been relegated to a way to get EHR Incent. $$ #HITsm

— EMR, EHR and HIT(@ehrandhit) May 3, 2013

T3: Everyone suffers if the vendor is not delivering ~ we all must take accountability, if you touch it…fix it.#HITsm

— Melissa Cole, FACHE (@ColeFACHE) May 3, 2013

T3: The physician… and future physicians whose EHR choice is decertified, assuming that happens.#HITsm

— Chad Johnson (@OchoTex) May 3, 2013

#HITsm T4: ”2013 is the year of the great #EHR switch.” With data migration and implementation hassles, is this truly a possibility?

t4 : oh the horror stories I have to tell you about swithcing EMR vendors!#HITSM

— HealthCo(@healthcois) May 3, 2013

T4: I spoke with the Texas Med Association about this. Small clinics need answers on how to get their data from 1 system to a better1 #HITsm

— Chad Johnson (@OchoTex) May 3, 2013

T4: Year of the great EHR/EMR switch. 1st was practice, second is aligned to workflow, process & business need. Cue Usability (tada!) #HITsm

— Linda Stotsky (@EMRAnswers) May 3, 2013

T4: I’ve seen large systems migrating for a while – to standardize from one system to another (mainly to Epic). #HITsm

— Melissa Cole, FACHE (@ColeFACHE) May 3, 2013

Post a Comment(0)

May 4, 2013 I Written By Katie

Katie Clark is originally from Colorado and currently lives in Utah with her husband and son. She writes primarily for Smart Phone Health Care, but contributes to several Health Care Scene blogs, including EMR Thoughts, EMR and EHR, and EMR and HIPAA. She enjoys learning about Health IT and mHealth, and finding ways to improve her own health along the way.

Filed Under: EHR Electronic Health Record Electronic Medical Record EMR EMR Analyst HealthCare IT HIE

Tags:#HITSM EHR EMR Healthcare

Dual Coding for ICD-10 Prep: Worth the Work?

Written by: John Lynn

The following is a guest post by Karen M. Karban, Director of Coding Integrity at H.I.M. ON CALL.
Karen Karban
At the recent AHIMA ICD-10 and CAC Summit, virtually every speaker discussed the need to begin dual coding prior to the October 1, 2014 implementation of ICD-10. Dual coding is the clinical process of coding and billing of encounters in both ICD-9 and ICD-10. It is one of the top four steps in preparing for ICD-10.

However, with clinical coders already in short supply, dual coding places additional demands on budget, staffing and workflow. So before your organization hires more coders and spends more money to dual-code, it’s important to take a closer look at the supporting rationale.

For Practices and Groups: Probably Not

For physician practices and medical groups, dual coding is probably not worth the work. Most practices treat only a few specific diseases, so the number of new ICD-10 codes and impact on revenue is limited. Furthermore, super bills and EMR templates are used to automatically code office visits. While physician practices and medical groups must certainly update these tools for ICD-10—as well as train staffs and educate physicians on new documentation requirements—the actual dual coding of office visits is probably cost-prohibitive. Dual coding in hospitals, however, is a completely different story.

For Hospitals: Absolutely

In the hospital setting, dual coding generates solid, comparative data for forecasting and preparing prior to going live with ICD-10. It delivers three key benefits and is absolutely necessary, even up to one year prior to the October 1, 2014 deadline.

Benchmarks financial impact and DRG shifts. Hospitals identify revenue winners and losers under ICD-10.
Assesses actual coder productivity and CDI specialist workloads in ICD-10. Hospitals calculate staffing requirements for operational budgeting.
Identifies gaps in clinical documentation that must be reinforced prior to 2014. Hospitals target physician education, fine-tune CDI specialist activities and update medical staff queries to improve documentation ahead of the ICD-10 deadline.

Dual coding helps hospitals prepare for ICD-10 and mitigate their risk of denied claims under the new coding system. Dual coding is also the first step in end-to-end testing for ICD-10, which is another key task to start this year, according to speakers at the HIMSS 2013 ICD-10 Symposium.

Beyond 2014

I don’t expect dual coding to continue past October 2014. However, providers will need to maintain a few ICD-9 skilled coders and CDI specialists. RAC audits and other retrospective reviews carry multi-year look-back periods, a few payers may not transition to ICD-10, and quality analysis and reporting will encompass both systems.

Although dual coding is a new concept for many of us, it is fast becoming common practice for most of us.

Karen M. Karban is the Director of Coding Integrity at H.I.M. ON CALL where she leads all coding initiatives.She can be reached at: Karen.karban@himoncall.com. Prior to joining H.I.M. ON CALL in 2012, she served as Director of Operations, HIM Services at M*Modal; as Healthcare Consultant at Craneware, Inc.; and as Chief of Operations – Chargemaster Services at Healthcare Concepts. Ms. Karban’s experience includes Medical Staff quality assurance, state survey corrective action plans, coding compliance plans and operational workflow redesign of coding departments. She spearheaded the Ambulatory Coding Lunch and Learn™ and is a founding contributor to JustCoding.com™. Ms. Karban remains active as a member of AHIMA. She is a past program chair of CHIMA and AZHIMA. She holds multiple certifications through AHIMA including RHIT, ICD-10-CM/PCS Trainer and Coordinator, and Certified Coding Specialist.

EMR Market Topped $20B Last Year

Written by: Katherine Rourke

As we all know, last year was a huge year for EMR adoption. How big? Well, according to new data from research firm Kalorama Information, the EMR market hit $20 billion in 2012, driven by health IT upgrades and the desire for Meaningful Use incentive payments.

According to Kalorama, the EMR market was $20.7 billion last year, up 15 percent from the $17.9 billion it reached in 2011. These numbers include revenue for EMR systems, CPOE systems and directly-related services such as installation, training, servicing and consulting.

Kalorama expects near year to be big as well, as providers implement EMR systems in an effort to avoid government penalties for sticking to paper charts.

More than $12.3 billion in Meaningful Use incentive payments had been doled out to 219,000 eligible hospitals and healthcare professionals as of March 1, 2013, with the incentives largely driving physician adoption of EMRs.

A recent CMS study reported that over 70 percent of physicians have used EMR systems, a huge jump from the 26 percent which had used these systems in 2006. Hospital EMR installlations, meanwhile, have been maturing, with 77 percent having reached Stage 3 or higher, compared with 71 percent in 2011.

Going forward, Kalorama predicts that EMR adoption will continue to increase, that hospital adoption will be more rapid than physician adoption and that hospitals currently at adoption Stage 3 will continue to increase their engagement with their systems. The research firm also predicts that current EMR owners will be upgrading their systems.

Meanwhile, researchers say, the threat of penalties for failing to use EMRs meaningfully will force both doctors and hospitals to make upgrades over the next year or so.

While Kalorama doesn’t mention this, the next year or two is also likely to be marked by “the big switch,” with doctors in particular changing out systems that haven’t proven effective to date. The likelihood that doctors will be buying new systems is likely to lead to a gangbuster year for ambulatory HIT vendors.

Post a Comment(0)

May 2, 2013 I Written By Katherine Rourke

Filed Under: EHR EHR Stimulus Electronic Health Record Electronic Medical Record EMR EMR Implementation Healthcare HealthCare IT Hospital EHR Meaningful Use

Tags:EHR Market EMR Adoption EMR Market Kalorama Information

Continuous Inspiration, Training, and Improvement

Written by: John Lynn

Today, I’m about ready to embark on a fun experience. No, I’m not heading to TEDMED or HIMSS or some other conference chalk full of inspiration, training, and improvement. Instead of me leaving somewhere, my wife is heading off with her two best girlfriends to a Women’s Conference which should be an amazing mix of practical, spiritual, and inspirational.

I’m really excited for her to have the opportunity that I get regularly to improve myself and expand my mind. My wife is a brave stay at home mom. She does a tremendous job raising our four children. However, as any stay at home mom can attest, sometimes you need to get out, have conversations with adults, and be something other than mom. I’m excited for the renewal that she’s sure to find from attending this Women’s Conference.

As I ponder on the experience my wife is about to have, I think many in the EHR and healthcare IT world need something very similar. Far too often we get overwhelmed by the little day to day heartache of using an EMR. The EMR that “never works” can be a real drag. The EHR popup message that does’t make any sense. The annoying extra click in your EMR. Even just the tedious repetition of documentation. All of these things are little until you deal with them day after day and patient after patient. Sounds a bit like a mother having to feed the children, pickup the toys, brush the hair, etc over and over again. Individually it’s nothing, but taken together can be overwhelming.

One of the best ways to deal with what I’ll call EMR depression is to have regular opportunities for inspiration, training and improvement. One method to deal with it can be regular meetings focused not on the challenges of EMR, but instead on the ways EMR can make your life and patients’ lives better. You can share stories of EMR success and even possible lives saved. It’s not unlike me sitting down with my wife discussing the beautiful things our children do. It’s so easy to focus on the negative that we often forget to talk about the positive.

Another way is to head to a conference that will inspire you about what’s possible. It’s amazing what an inspiring speaker can do to change how you enjoy your work. Sure, it’s great to go to a session talking about the tactical details of meaningful use. However, you also want to make time to hear from someone like Dr. Jen Brull who can tell you her practical approach to improving the health of her patients. There’s nothing more inspiring than hearing her story and then seeing the face of the patient whose life she saved. There’s a time for tactical, but it can’t crowd out the inspirational. In some cases you can even get both. I hope that’s what happens for my wife this week.

Yes, for those reading between the lines, my wife attending this conference means for the next 5 days I’m going to be home alone caring for my 4 children (age 9 months to 9 years). A daunting task for anybody. However, it turns out the next 5 days with my children will be the best form of inspiration for me. In my whirlwind life of blog posts, tweets, conferences, emails, comments, interviews, and meetings, my best inspiration to do what I do can be the innocent laugh of my 9 month old, the funny phrases of my 3 year old, the inquisitive questioning of my 6 year old, and the creativity of my 9 year old. Yes, inspiration is all around us if we take the time to be inspired.

EHR Benefit – Eliminate Staff

Written by: John Lynn

It’s time for the next installment in my series of posts looking at the long list of EHR benefits.

Eliminate Staff
The idea of eliminating staff is a really hard one to talk about. Often the staff in a medical office becomes a family and so it’s really hard to think about losing a staff member in order to pay for the EMR. In fact, it’s incredibly common for staff in a clinic to fear an EMR implementation because they’re afraid that their job is in jeopardy.

From my experience, it’s incredibly rare for any existing staff to lose their job during an EMR implementation.

There are two main reasons why it’s unlikely that someone will lose their job because of an EMR implementation. The first is that most healthcare organizations have a natural employee attrition. When this happens the organization can just choose to not replace the departing employee. This is one way to save money on staff without having to actually fire any employees.

The second reason that people don’t lose their job to the EMR is that those people get reassigned to new jobs. For some people this can be nearly as bad as losing a job, but for many it’s basically a shift in job responsibilities. This shift can often be welcome since the EMR implementation can free them up to do work that they always wanted to do and never were able to do before.

The areas of healthcare that I’ve seen most affected by an EMR implementation is medical records, transcription, billing, and the front desk. We’ve already written previously about transcription and EMR. The front desk and billing can be affected, but generally stays close to the same from what I’ve seen. A lot of this depends a lot on what type of staffing you had before the EMR. I have seen some organizations implement an EMR and save money on front desk and billing staff.

Medical records (or HIM if you prefer) is usually the most impacted. Certainly they still have an important place in the office for things like release of records and other records management functions. They also have to continue to deal with the legacy paper charts. However, their days of finding, organizing and filing charts are over when an EMR is put in place. In some cases the chart organizing and finding gets replaced with things like scanning into the EMR. In other cases, there isn’t as many medical records staff needed.

Many who are reading this post are probably balking at the idea of eliminating staff being a benefit of an EMR implementation. They’d no doubt point to the EHR backlash that we see from many doctors who complain that an EMR makes them much slower and takes up too much time. This is an important item to consider when evaluating the benefits of an EMR in your organization. It’s not much of a benefit to save other staff cost if the doctor spends twice as much time per patient.

However, on the other side of the coin is those doctors who swear by the efficiency their EMR provides them. I’ll never forget this older OB/GYN I met who told me he would NEVER use an EMR. Two years later that same OB/GYN was proclaiming his love of EMR. He described how he wouldn’t be able to see nearly as many patients as he did each day without the EMR. He acknowledged the slow down that occurred when they first implemented the EMR, but once they adapted to the EMR workflow they were able to see most patients.

No doubt Eliminating Staff can be a mixed EMR benefit basket depending on your unique situation. Although, this is true with almost every EMR benefit we’ll cover in this series. This can be a tremendous benefit of EMR or it can also be an expense as you find you need to hire more staff.

Related Whitepaper:
Getting Lean with Your Practice: Five Tips for Improving Provider Productivity with an EHR
One of the major reasons that health care providers resist implementing an electronic health record (EHR) system is the belief that using it will slow them down, reducing the number of patients they can see and therefore reducing practice revenue. In fact, an EHR that is designed around an efficient workflow can enable providers to work faster and more efficiently. “Lean” methodologies, originally introduced by Toyota, have recently been used by health care providers such as Massachusetts General Hospital, ThedaCare, and Beth Israel Hospital (Boston) to streamline patient workflow. By understanding and measuring the workflow, health care providers can determine best practices, which will ultimately enable them to achieve the level of efficiency they desire.

Download Whitepaper or see More EMR and Health IT Whitepapers

Risk Taking in Healthcare and the Foolish

Written by: John Lynn

“You have to take what people think is wrong or even foolish and make the breakthroughs of tomorrow.” – John Kheir, MD

I’m still in awe of the ideas that John Kheir, MD presented at TEDMED around injectable oxygen-filled microbubbles. The concept is fascinating and while I know nothing about the science or medical requirements of what he was doing, I was even more impressed with the challenges that John Kheir faced from “the establishment” when he through out what many considered to be foolish ideas.

This is what make’s Dr. Kheir’s quote above so powerful. The breakthroughs of tomorrow really are often consider foolish ideas today. We see these examples in the tech world all the time. When Google began it was foolish to think that they could index the web and let people search through it. The dominant thinking of the time was that a website like Yahoo would curate the vast amount of web content for the users. Google’s foolish idea has turned out pretty well. It makes me wonder what foolish healthcare IT ideas are out there that we should be embracing and supporting as opposed to suppressing.

When Dr. Kheir had his breakthrough idea of oxygenating the blood through an IV, he started to research whether some sort of micro container existed. He discovered that indeed microbubbles already existed and were used for ultrasound imaging. He reached out to one of the leading experts on microbubbles and asked if they’d been used to oxygenate blood and if not why not. The researchers response was fascinating. He replied, “I didn’t know it would be useful.”

I ask then, are there technologies out there today that we just aren’t using in EMR and healthcare IT because “we didn’t know it would be useful?”

Check out the Looking Ahead After TEDMED hangout I’m doing on Thursday, May 2, 2013 at 2:00 PM EST to hear more discussion about TEDMED.

Post a Comment(0)

April 29, 2013 I Written By John Lynn

Filed Under: EHR Electronic Health Record Electronic Medical Record EMR Healthcare HealthCare IT

Tags:Google John Kheir Microbubbles Oxygenate Blood TedMed TEDMED 2013

EMR Research, EMR Blogging, and EMR Whitepapers

Written by: John Lynn

#his2013 Overhage: EMR deployment success is also creating a problem as we deploy Commerial products – more difficult to experiment/research

— Ross D. Martin (@RossMartin) April 26, 2013

This is an interesting observation. I see what Ross means when it comes to experimentation. Meaningful use and the rest of the government regulations are sucking the innovation out of healthcare IT and EMR in particular. However, from a research stand point, EMR can open up a whole new section of research. Maybe Ross was referring to research on the best way to do EMR.

Agree! cc @intelhealthit RT @peggylou74 Lots of good EMR blogging: workflow, interoperability, check it out ilms.intel.com/aprimoportal/O…

— Charles Webster, MD(@EHRworkflow) April 26, 2013

I love more people blogging about EMR. Although, it seems that some of the best EMR blogs are coming from vendors. I love vendors involvement and perspective in the blogosphere, but I’d love to see more independent EMR bloggers as well.

Excellent new resource on @ehrandhit RT @techguy EMR and EHR Whitepapers dlvr.it/3GtY41

— Charles Webster, MD(@EHRworkflow) April 23, 2013

I was glad that Dr. Webster likes the healthcare IT whitepaper resource we created. The nice part is that we’re just getting started with it and the resource will get even better over time.

Android Security Risks May Outweigh Benefits

Written by: Katherine Rourke

Not long ago, my colleague John Lynn made a compelling pitch for the Android platform, arguing that it’s likely to take over healthcare eventually given its flexibility. That flexibility stands in sharp contrast to Apple phones and tablets, which work quite elegantly but also impose rigid requirements on app developers.

That being said, however, there’s security risks associated with Android that might outweigh its advantages. The major carriers are doing little or nothing to upgrade and patch the Android versions on the phones they sell, leaving them open to security breaches.

The Android security problem is so egregious that the American Civil Liberties Union has filed a complaint with the Federal Trade Commission, asking the agency to investigate how AT&T, Verizon, Sprint and T-Mobile handle software updates on their phones.

In the complaint, the civil liberties group argues that the carriers have been engaging in “unfair and deceptive business practices” by failing to let customers know about well-known unpatched security flaws in the Android devices that they sell.

What makes things worse, the ACLU suggests, is that the carriers aren’t even offering consumers the option to update their phones. Though Google has continued to fix flaws in the Android OS, these fixes aren’t being bundled and pushed out to the wireless carriers’ customers. As the ACLU rightly notes, such behavior is unheard of in the world of desktop operating systems, where consumers regularly get updates from Apple and Microsoft.

In its complaint the ACLU argues that the carriers must either provide security updates to customers or allow them to get refunds on their devices and terminate their contracts without any penalty. It’s asking the FTC to force the carriers’ hand.

In the mean time, with healthcare requiring strict data security under HIPAA, one has to wonder whether hospitals and medical practices should be using Android devices at all (at least for their work). Of course, clinicians who are accustomed to using their personal Android phones or tablets will be inconvenienced and probably fairly annoyed too. But as things stand, hospital CIOs better be really careful about how they handle Android phones in the healthcare environment.

URMC Faces Third HIPAA Breach

National Nurses Day Tribute

EHRMagic, EHR Certification, and the Great EHR Switch — #HITsm Chat Highlights

Dual Coding for ICD-10 Prep: Worth the Work?

EMR Market Topped $20B Last Year

Continuous Inspiration, Training, and Improvement

EHR Benefit – Eliminate Staff

Risk Taking in Healthcare and the Foolish

EMR Research, EMR Blogging, and EMR Whitepapers

Android Security Risks May Outweigh Benefits

Top EMR & HIPAA Posts

Calendar

Recent Posts

EMR & HIPAA Resources

Recent Comments

Categories

May 2013
M	T	W	T	F	S	S
« Apr
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31