Why don’t I know when someone, something, anyone accesses my personal health data? I get emails from Apple, Google, my banks, credit cards, Facebook when someone attempts to get access to my financial or social media accounts from a different computer or browser than one I’ve authorized. My bank proactively let’s me know when they suspect fraudulent charges. But I have no idea when someone opens, adds to, corrects, uses, sells my health data. I’m pretty much an open book, even pathologically open. After all, I blog about anything. I still would like to know who’s using my health data. If I knew I may be less open. I may still not care. I know data is big, big business. Social media data, Amazon data, health data. It can’t be because it’s not technically possible or too complex. I don’t think I want to interfere with that big business (why try?), but it doesn’t interfere for Facebook or my bank to keep me posted, so why would it interfere for my health data. If the federal government is paying billions to support the electronic health data business through meaningful use incentives, why don’t they require that we be notified of our health data use? Health data sources (hospitals, insurance companies, researchers, etc) spend millions if not billions to prevent hacking, yet hacking occurs regularly. More than 30 million records hacked a year! It takes a long time for companies to discover hacking – often not until thousands of files are hacked. Seems like I could identify health data hacks sooner and then tell the entity that’s hacked.. Wouldn’t I be flooded with notices every time I went to the doctor or went in the hospital? Not if I could authorize access and permission and even assign other people, clinicians, and hospitals to authorize on my behalf. My authorizations could be stored on a server accessible to me and accessible to those wanting to exchange my data. I could go to it to track authorization, change what I allow to whom. What would take for government and industry to want to accomplish this? Is there a threshold of hacking or fines? When I review the literature, little discussion occurs beyond better encryption, more rigid password protection. Why not? Does this matter to you?
Notifying me when accessing my health data
Get New Posts via Email
Your support is appreciated
Subscribe to my podcast:
Subscribe to my YouTube channel:
Categories
Search This Site
Tags:
music magic lever health goals sax Blue Button Community Health Recovery palliative care policy trust gratitude apps coronavirus CEO of Your Health Behavioral Health habits Sickle Cell chronic illness Participatory Research EMR Determinants of Health Data improv innovation clinical decision support podcast wheelchair PTSD Young Adult People at the Center of Care safe living portal storytelling care planning Covid19 decision-making MS Medical Record informed decision-making resilience health literacy transitions self-care EHR Covid-19 ePatient evidence coaching leadership Pain Advocates health partners stress Best health chronic pain lived experience tpfalumni CDS Impact Learning Health choices relationships learning young adults Exercise Holocaust technology patient experts community Care Partner Failure grief health team diversity podcasting patient engagement Just-in-Time decisions PHR person-first consent threshold pediatrics research pain management end-of-life PCORI inclusion Rest adherence multiple sclerosis goals mindfulness caregiving superpower questions interoperability caregivers shared decision making advocacy engagement Health equity
4 Comments
Leave a Reply Cancel Reply
This site uses Akismet to reduce spam. Learn how your comment data is processed.
Interesting. With the Mass Highway patients are consenting to have their data shared but I agree with you about being notified who accesses and allowing others.
As usual, good idea, Danny. Jim Grant
Very good points, Danny. I never really thought of that.
Right on brother! It matters to me a whole lot. It does seem like it would be so easy, and shouldn’t I have a right to my information (or at least knowledge of how my information is used)?