The Milbank Memorial Fund is an endowed operating foundation that publishes The Milbank Quarterly, commissions projects, and convenes state health policy decision makers on issues they identify as important to population health.
We focus on a number of topic areas identified by state health policy leaders as important to population health.
The Center for Evidence-based Policy at Oregon Health & Science University is a national leader in evidence-based decision making and policy design.
Keep up with news and updates from the Milbank Memorial Fund. Get the latest from thought leaders, including Christopher F. Koller, president of the Fund.
We publish The Milbank Quarterly, as well as reports, issues briefs, and case studies on topics important to population health.
March 2018 (Volume 96)
March 2018 | Michelle M. Mello, Julia Adler-Milstein, Karen L. Ding, Lucia Savage | Original Investigation
Context: Although the clinical benefits of exchanging patients’ health information electronically across providers have long been recognized, participation in health information exchange (HIE) has lagged behind adoption of electronic health records. Barriers erected by federal and state health information privacy law have been cited as a leading reason for the slow progress. A comprehensive assessment of these issues has not been undertaken for nearly a decade, despite a number of salient legal developments.
Methods: Analysis of federal and state health information privacy statutes and regulations and secondary materials.
Findings: Although some legal barriers to HIE persist, many have been ameliorated—in some cases, simply through improved understanding of what the law actually requires. It is now clear that the Health Insurance Portability and Accountability Act presents no obstacles to electronically sharing protected health information for treatment purposes and does not hold providers who properly disclose information liable for privacy breaches by recipients. The failure of federal efforts to establish a unique patient identifier number does slow HIE by inhibiting optimal matching of patient records, but other action to facilitate matching will be taken under the 21st Century Cures Act. The Cures Act also creates the legal architecture to begin to combat “information blocking.” Varying patient consent requirements under federal and state law are the most important remaining legal barrier to HIE progress. However, federal rules relating to disclosure of substance-abuse treatment information were recently liberalized, and development of a technical standard, Data Segmentation for Privacy, or DS4P, now permits sensitive data requiring special handling to be segmented within a patient’s record. Even with these developments, state-law requirements for patient consent remain daunting to navigate.
Conclusions: Although patient consent requirements make HIE challenging, providers’ expressed worries about legal barriers to participating in HIE likely primarily reflect concerns that are economically motivated. Lowering the cost of HIE or increasing financial incentives may boost provider participation more than further reducing legal barriers.
Keywords: legal, electronic health record, health information technology, health information exchange.
Read on Wiley Online Library
Volume 96, Issue 1 (pages 110-143)
Published in 2018
Transformation of the Health Care Industry: Curb Your Enthusiasm?
The Role of HIPAA Omnibus Rules in Reducing the Frequency of Medical Data Breaches: Insights From an Empirical Study