When Do Privacy Violations Become News?

June 18, 2011
You may have seen the breathless news reports about Kaiser Permanente’s disciplining of twenty-three employees for unauthorized access to Nadya

You may have seen the breathless news reports about Kaiser Permanente’s disciplining of twenty-three employees for unauthorized access to Nadya Suleman’s electronic records. These violations of policy and ethics are being described as “security breaches” that threaten the public’s confidence in, and support for, the effort to modernize medical record keeping.

Please.

I’ll let you in on a dirty little secret that will come as no surprise to those of us who have worked in the medical field. Health care workers have always dabbled in medical record snooping.

Had Ms. Suleman given birth to eight babies in 1989, the odds are that her paper chart would have made the rounds of every medical record clerk, much of the nursing staff, and at least half of the physicians at her hospital. The difference is that no one would have been fired, suspended, or made to stand in the corner.

The truth is that what the Kaiser employees did was wrong, and they got caught because Kaiser has a robust electronic system in place that allowed them to identify the miscreants. Could they have cranked up the access controls even higher and saved these people from their own destructive curiosity? Perhaps; but if doing so makes it more difficult to get to critical information when it’s needed to render care, who would they be helping?

My point is that violation of an organization’s privacy policies by its employees is serious, but it’s not a security breach- and it shouldn’t be news. (Though I must say it did give me a valuable object lesson to share with our employees. Call it a teachable moment.)

Our patients need to trust us or they won’t come to us for care. We have to let them know that everyone in our organization is committed to protecting their privacy, and that we have modern, technological methods for ensuring that anyone who violates that trust suffers the consequences.

Our healthcare information technology is what makes that possible.

So, Senator Leahy, the health privacy problem predates the electronic health record. The EMR is, in fact, part of the solution.

Sponsored Recommendations

How Digital Co-Pilots for patients help navigate care journeys to lower costs, increase profits, and improve patient outcomes

Discover how digital care journey platforms act as 'co-pilots' for patients, improving outcomes and reducing costs, while boosting profitability and patient satisfaction in this...

5 Strategies to Enhance Population Health with the ACG System

Explore five key ACG System features designed to amplify your population health program. Learn how to apply insights for targeted, effective care, improve overall health outcomes...

A 4-step plan for denial prevention

Denial prevention is a top priority in today’s revenue cycle. It’s also one area where most organizations fall behind. The good news? The technology and tactics to prevent denials...

Healthcare Industry Predictions 2024 and Beyond

The next five years are all about mastering generative AI — is the healthcare industry ready?