Quote Of The Year

Timeless Quotes - Sadly The Late Paul Shetler - "Its not Your Health Record it's a Government Record Of Your Health Information"

or

H. L. Mencken - "For every complex problem there is an answer that is clear, simple, and wrong."

Saturday, May 11, 2019

Weekly Overseas Health IT Links – 11th May, 2019.

Here are a few I came across last week.
Note: Each link is followed by a title and few paragraphs. For the full article click on the link above title of the article. Note also that full access to some links may require site registration or subscription payment.
-----

RCGP tech manifesto calls for prioritisation of joined-up IT systems

The Royal College of GPs (RCGP) is calling for the joining up of IT systems across the NHS to be prioritised as part of its technology manifesto.
Hanna Crouch – 2 May, 2019
The All Systems GP document, published on 30 April, recognises the potential that genomics, AI, digital medicine and robotics has to improve patient care and safety, but adds this can only be achieved once all areas of the NHS have access to computer networks which link up the patient journey.
The manifesto states it wants all GP practices to have:
  • modern, digitally-enabled premises with fully interoperable IT systems
  • access to secure high-speed broadband facilities
  • access to a single shared electronic patient record which documents patient interactions throughout the NHS
Professor Helen Stokes-Lampard, chair of the RCGP, said: “GPs have always embraced new technology. General practice was the first NHS sector to have electronic prescribing and electronic patient records so we know how beneficial new technology can be and we recognise its huge potential to help our patients.
-----

Almost Half of Physicians Say EHRs Have Hurt Quality of Care

Marcia Frellick
May 01, 2019
In a Medscape poll of more than 250 clinicians, more physicians said that electronic health record (EHR) systems have decreased quality of care (44%) in their primary workplace than increased it (40%).
Nurses and advanced practice registered nurses (APRNs) saw more benefit than detriment in EHRs: 42% said they had increased quality of care vs 35% who said they had decreased care quality.
The recent poll included 273 respondents — 207 physicians and 66 nurses/APRNs.

Few Involved In Choosing EHR System

The poll also indicated that few physicians or nurses were involved in the decision of which EHR to use in their primary workplace.
-----

DHS Gives Federal Agencies 15 Days to Patch Critical Security Flaws

DHS issued a binding directive tightening the timeframe to patch security flaws for all federal agencies, including HHS, which OIG recently determined has “ineffective” security.
May 02, 2019 - All federal agencies, including the Department of Health and Human Services, will now have just 15 days to patch critical security flaws in all internet-accessible platforms, according to a new binding operational directive from the Department of Homeland Security.
Published this week, the BOD 19-02 changes the timeframe for patching critical vulnerabilities to just 15 calendar days and 30 days for flaws ranked with high severity. DHS officials said the countdown for patching begins once its cyber hygiene vulnerability scanning system detects a flaw through routine system scans.
Once a flaw is found, DHS will issue an alert to the relevant federal agencies. Those departments will then need to patch the flaws within the new timeframe. If not, the federal agency will receive a reminder from DHS to do so or they could face administrative penalties.

Friday, May 10, 2019

A Timely Reminder Of Just How Bad The Health Sector Is At Digital Security.

This appeared last week:

The Un-healthiness of the Australian Health Sector’s Data Security

Australia  May 3 2019
More than twelve months after the commencement of the Australian Notifiable Data Breach Scheme,[1] statistics published by the Office of the Australian Information Commissioner (OAIC) have begun to reveal trends present in the 812 notifiable data breaches recorded in Australia between 22 February and 31 December 2018. One key trend is the clear susceptibility of the health care industry, which suffered one fifth of all data breaches recorded in Australia throughout 2018, the highest number on an industry scale.
There is a cruel sense of irony that the services we turn to when we are vulnerable are themselves vulnerable, suffering data breaches that may harm us financially, psychologically or, in extreme circumstances, physically. The figures are stark, with 163 notifiable data breaches suffered by health sector businesses that are subject to the federal Privacy Act 1988 (Cth), which does not include the country’s major hospitals operated under State jurisdictions. On top of these figures, the Australian Digital Health Agency, the agency responsible for administering the controversial ‘My Health Record’ system,[2] reported that a further 42 data breaches affected Australian My Health Records throughout 2018, which are also excluded from the statistics recorded in the OAIC’s reports.
For industries in the health sector, and those advising on cyber security, the question inevitably arising out of these figures is – why? Are these statistics merely the result of statistical variation over a limited period, or are there industry-specific factors that contribute to the prevalence of data breaches? This question cannot be answered definitively, but there are statistical anomalies within health sector data breach figures which provide further insight. In the period between 1 April 2018 and 31 December 2018 there were 83 notifiable data breaches in the health sector caused by human error, comprising 56% of the total breaches throughout that period.[3] This figure is alarmingly high. In contrast, the percentage of data breaches caused by human error in all other industries is a mere 30%.[4]
More here:
What can you say? The whole sector needs to be better supported, better trained and more alert!
David.