As providers seek to address patient engagement requirements associated with meaningful use, accountable care, changing reimbursement models and health information exchanges, some of my clients question whether it is possible to innovate care delivery and market themselves to prospective and existing patients while, at the same time, safeguard the privacy and security of their health data.
My answer is always an unequivocal “yes.” It’s true, balancing innovation and security can be challenging, but not as difficult as widely perceived. Risk management by definition requires weighing risks against frequency, probability and impact. Just because something is a risk does not mean you have to fix it. The healthcare community as a whole goes to great lengths to avoid situations anticipated to compromise security. Innovative ideas that improve care, the patient experience, customer service and efficiency, coupled with creative methods to attract and retain new consumers to increase revenue, are often quickly rejected because of the aversion to risk.
The solution is not to unplug your computers, disconnect wireless networks and lock all the doors. Healthcare organizations should implement smart security plans that allow for compliance but also embrace innovation. Reform has moved from a consideration to law and patient-centric care models that incent providers and payers to seriously look at innovation to connect and collaborate with patients are now priorities.
To address the security of protected health information (PHI), the first step is to ensure your security and compliance officers participate in all business discussions entailing consumer outreach initiatives. By engaging these highly trained professionals early in the planning process, organizations can avoid costly missteps and communication gaps.
Providers have a choice. They can either let fear of the unknown paralyze them or embrace new methods to change, measure and deliver care while simultaneously striving to protect the privacy and security of their patients’ data. The former will lead to loss of business and mediocre clinical and financial results while the latter offers a constructive path to achieving greater outcomes, success and a competitive advantage.
Eric Mueller is Services President of WPC. He has 20 years of diversified healthcare experience spanning healthcare reform, IT strategic planning and execution, revenue cycle optimization, security and compliance, new product and technology launch, organizational design and re-structuring, and mergers and acquisitions.