Comments on: Poker for Paralysis http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/ My story and random thoughts while dealing with a C6-C7 subluxation... Wed, 19 May 2010 03:35:32 +0000 hourly 1 http://wordpress.org/?v=3.0 By: e-Patient Dave (deBronkart) http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/comment-page-1/#comment-85 e-Patient Dave (deBronkart) Mon, 26 May 2008 03:25:04 +0000 http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/#comment-85 Satan on Ice... har! Hadn't heard that one. I've read a modest amount about EMRs but you've provided perspectives I haven't heard elsewhere. For an update on Google's ethics and other bloggers' thoughts, see <a href="http://patientdave.blogspot.com/2008/05/more-on-google-health-two-reasons-to-be.html" rel="nofollow">my update</a> yesterday. Satan on Ice… har! Hadn’t heard that one.

I’ve read a modest amount about EMRs but you’ve provided perspectives I haven’t heard elsewhere.

For an update on Google’s ethics and other bloggers’ thoughts, see my update yesterday.

]]> By: chris http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/comment-page-1/#comment-83 chris Fri, 23 May 2008 16:35:39 +0000 http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/#comment-83 I would love to say that I trust Google. "Do no evil," was their mantra from the beginning. Then they caved to pressure from the Chinese government and censored content in order to gain access to the then single-largest, untapped consumer base in the world. While they claimed providing some content was better than providing none, they also set a precedent that they're willing to succumb to pressure in order to ensure their operations. That makes me incredibly nervous about Google holding on to all kinds of private data. Interestingly, I just clicked over to the link you included and I see you've referenced the same issues in China. I tend to think that <a HREF="http://en.wikipedia.org/wiki/Electronic_medical_record" rel="nofollow">EMR</A>s need to be owned and operated by hospitals. While it's an old-fashioned way of doing it, I think in this case the issue of patient privacy far outweighs the cost-savings of an <a HREF="http://en.wikipedia.org/wiki/Application_service_provider" rel="nofollow">ASP</A>-type model. Additionally, one of the best arguments for EMR systems is the clarity they can provide to healthcare providers when the patient is unconscious or unable to clearly give details. Hospitals cannot and should not be dependent on functional Internet access to obtain this information. What would hospitals do during citywide blackouts? They have generators to run on, but imagine how crippled they would be without information systems they've come to depend on. I would much rather see critical data located on local systems that are not connected to patient-accessible networks. Run separate physical networks for the systems that contain sensitive information, and allow data exchange with other hospitals via a public key-based secure infrastructure. It could easily run atop the Internet with several agencies maintaining authoritative signing keys. Think of it as how SSL works, but far more tightly run (keys manually verified, different types of keys for software vendors and health providers, any key failures or problems automatically disable access, etc). Hospitals could obtain the keys necessary as part of their support contract when they purchase compliant systems, and vendors that implement the open standards could easily be given chained authority to sign such keys. And right as that's being implemented, I'll go see "Satan on Ice." I would love to say that I trust Google. “Do no evil,” was their mantra from the beginning. Then they caved to pressure from the Chinese government and censored content in order to gain access to the then single-largest, untapped consumer base in the world. While they claimed providing some content was better than providing none, they also set a precedent that they’re willing to succumb to pressure in order to ensure their operations. That makes me incredibly nervous about Google holding on to all kinds of private data. Interestingly, I just clicked over to the link you included and I see you’ve referenced the same issues in China.

I tend to think that EMRs need to be owned and operated by hospitals. While it’s an old-fashioned way of doing it, I think in this case the issue of patient privacy far outweighs the cost-savings of an ASP-type model.

Additionally, one of the best arguments for EMR systems is the clarity they can provide to healthcare providers when the patient is unconscious or unable to clearly give details. Hospitals cannot and should not be dependent on functional Internet access to obtain this information. What would hospitals do during citywide blackouts? They have generators to run on, but imagine how crippled they would be without information systems they’ve come to depend on.

I would much rather see critical data located on local systems that are not connected to patient-accessible networks. Run separate physical networks for the systems that contain sensitive information, and allow data exchange with other hospitals via a public key-based secure infrastructure. It could easily run atop the Internet with several agencies maintaining authoritative signing keys. Think of it as how SSL works, but far more tightly run (keys manually verified, different types of keys for software vendors and health providers, any key failures or problems automatically disable access, etc). Hospitals could obtain the keys necessary as part of their support contract when they purchase compliant systems, and vendors that implement the open standards could easily be given chained authority to sign such keys.

And right as that’s being implemented, I’ll go see “Satan on Ice.”

]]> By: e-Patient Dave (deBronkart) http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/comment-page-1/#comment-80 e-Patient Dave (deBronkart) Thu, 22 May 2008 03:53:00 +0000 http://sci.chrismcculloh.com/2008/05/17/poker-for-paralysis/#comment-80 I just now discovered that things have been going on over here while I was off doing a zillion things in San Francisco and the blogosphere. I hear you're gettin' outa jail soon - wonderful! Great news! Hey, what do you think about the <a href="http://www.e-patients.net/archives/2008/05/google_releases.html" rel="nofollow">Google Health</a> controversy, Mister Doctor-To-Be? There are large arguments going on about the privacy issues. Google's not a care <i>provider</i> so they're not covered by HIPAA privacy regulations. They're responding to those concerns by saying they wrote their own regulations, stricter than HIPAA... but, heh, unfortunately there's nobody to enforce the ones they wrote themselves. I just now discovered that things have been going on over here while I was off doing a zillion things in San Francisco and the blogosphere.

I hear you’re gettin’ outa jail soon – wonderful! Great news!

Hey, what do you think about the Google Health controversy, Mister Doctor-To-Be? There are large arguments going on about the privacy issues. Google’s not a care provider so they’re not covered by HIPAA privacy regulations. They’re responding to those concerns by saying they wrote their own regulations, stricter than HIPAA… but, heh, unfortunately there’s nobody to enforce the ones they wrote themselves.

]]>