Free EMR Newsletter Want to receive the latest news on EMR, Meaningful Use, ARRA and Healthcare IT sent straight to your email? Join thousands of healthcare pros who subscribe to EMR and HIPAA for FREE!!

The Guide to HIPAA Compliant Text Messaging

Posted on January 23, 2014 I Written By

John Lynn is the Founder of the HealthcareScene.com blog network which currently consists of 10 blogs containing over 8000 articles with John having written over 4000 of the articles himself. These EMR and Healthcare IT related articles have been viewed over 16 million times. John also manages Healthcare IT Central and Healthcare IT Today, the leading career Health IT job board and blog. John is co-founder of InfluentialNetworks.com and Physia.com. John is highly involved in social media, and in addition to his blogs can also be found on Twitter: @techguy and @ehrandhit and LinkedIn.

I’ve written regularly about the need to move to HIPAA compliant text messaging, because Texting (SMS) is NOT HIPAA Secure. To add to that, I recently wrote a post on EMR and EHR about Why Secure Text Messaging is Better than SMS. I throw out the whole “fear of HIPAA” component and paint a picture for why every organization should be moving to a secure text message solution instead of using SMS.

While I think a business case can be made for secure text messaging in healthcare over SMS without using HIPAA, the HIPAA implications are important as well. In fact, imprivata has put out The CIO’s Guide to HIPAA Compliant Text Messaging where they make a good case for why HIPAA compliant text messaging is important and how to get there.

The whitepaper suggests that you have to start with Policy, then choose a Product, and then put it into Practice. Sounds like pretty much every health IT project, no? However, the guide also offers a series of really great checklists that can help you make sure you’re covering all of your bases when it comes to implementing a secure text message strategy.

Of course, the biggest challenge to all of this is that everyone is so busy with MU stage 2 and ICD-10. However, when the HIPAA auditors come knocking, I wouldn’t want to be an organization without a secure text message solution. The best way to battle non-HIPAA compliant SMS messaging in your organization is to provide them an alternative.

Full Disclosure: I’m an adviser to HIPAA compliant messaging company docBeat.

Is Meaningful Use a Floor or Ceiling?

Posted on June 9, 2011 I Written By

I was witness to an interesting discussion earlier this week at the Wisconsin Technology Network’s Digital Healthcare Conference in Madison, Wis.: Is meaningful use a floor or a ceiling?

One panelist, Judy Murphy, VP of information services at Aurora Health Care in Milwaukee, said Stage 1 meaningful use has caused the health system to alter its own IT plans by activating a patient portal and moving more toward interoperability sooner than intended. “We wouldn’t have decided to give electronic copies of clinical summaries at discharge [without meaningful use],” Murphy said.

But Murphy believes it’s a floor for many of the criteria, such as the requirement that 30 percent of patients have at least one medication order entered electronically. “No one would go into an implementation shooting so low,” she said. As a member of the Health IT Policy Committee as well as the Meaningful Use Workgroup of the Health IT Policy Committee, Murphy actually had a hand in shaping the standards. (Remember, though, the original proposal called for 10 percent for hospitals and 80 percent for physicians. The final Stage 1 rule set the threshold at 30 percent for both.)

Gartner analyst Vi Shaffer offered a counterpoint. “Meaningful use is not the floor,” she said. “All the existing quality measures that have been out there so long should be considered the floor.” Shaffer expressed frustration that so many 12-year-old National Quality Forum performance measures still haven’t been met.

According to Shaffer, the idea behind meaningful use is to “lift people up,” particularly when it comes to safety-net providers like critical-access hospitals. Shaffer said policymakers didn’t want to see “oligopolies” in local markets because smaller providers were forced to merge with large health systems because of EHR requirements.

Session moderator Dr. Barry Chaiken, chief medical officer at Docs Network Imprivata, and a former HIMSS chair, said he believes health IT will raise the norm for all providers and “lock in” better behaviors, suggesting that in some ways, meaningful use could be a floor.

By holding the conference in Madison, WTN was able to land the publicity-shy Judy Faulkner, CEO of Epic Systems in nearby Verona, Wis. Faulker noted that Epic shows a simpler version of its core EHR in overseas markets because the company had to add some functions for regulation and liability purposes in the U.S.

While plenty of providers are viewing meaningful use as a ceiling right now–perhaps an unattainable one–Murphy believes acceptance will come rapidly. “I think in 2015, we’re gonna look and say, ‘How did we even have healthcare without computers?'” Murphy said. She then said she had heard that HCA would attest this year to meaningful use at all of its U.S. hospitals.

Being the occasionally motivated reporter that I am, I tweeted this statement, asking for verification. Wouldn’t you know, HCA replied with this tweet: “Nearly all HCA facilities should achieve requirements 4 Stage I this yr. An exciting, important step for high-performance hcare!”

So maybe meaningful use is not a floor or ceiling, but the new norm.

What are your thoughts?

CORRECTION, June 13: Chaiken’s one-year contract with Imprivata is over, so he’s no longer affiliated with that company.