“As health information exchanges (HIEs) tap data from more sources, personal health records (PHRs) present both compelling potential and a raft of challenges. HIE access to and use of PHR data was a topic of interest at recent a Beacon Community panel discussion, and PHRs could be vehicles for patient accountability in future care delivery models. But we’re not there yet for a variety of reasons.
Security of patient data represents one sticking point: The Office of the Inspector General’s report earlier this month cited CMS’ lax enforcement of HIPAA’s security rule. ONC efforts to secure patients’ individually identifiable health information at the policy level also need work, a second OIG report found.”
Mary Stevens, CMIO, 25 May 2011