Personally Controlled Electronic Health Record

Last updated

The Personally Controlled Electronic Health Record (PCEHR) is a shared electronic health summary set up by the Australian government with implementation overseen by the National Electronic Health Transition Authority (NEHTA). The purpose of the PCEHR is to provide a secure electronic summary of people's medical history [1] which will eventually include information such as current medications, adverse drug reactions, allergies and immunisation history in an easily accessible format. This PCEHR is stored in a network of connected systems with the ability to improve the sharing of information amongst health care providers to improve patient outcomes no matter where in Australia a patient presents for treatment. [2] [3] It is currently an opt-in system with a unique individual healthcare identifier (IHI) being assigned to participants and the option of masking and limiting information available for viewing controlled by the patient or a nominated representative.

Contents

Rationale

Currently it is reported that on average, each Australian has 22 health system interactions annually. This includes General practitioner (GP) visits, specialists, or prescriptions. All of these interactions are held in individual, separate, paper-based records making the entire health picture of an individual difficult to ascertain. [4] It is also reported that up to 10% of hospital admissions are due to adverse drug events, 18% are due to medical errors relating to lack of adequate available patient information, [5] and an estimated 25% of clinicians time is spent collecting information regarding the patient than actually treating them. [6] These facts combined with the ageing Australian population, vast geographic expanse, and ever increasing population, have necessitated the implementation of the PCEHR in an effort to bring the medical record into the 21st century.

Implementation

As part of the 2010/11 Australian federal budget the Hon. Nicola Roxon (Minister for Health and Ageing) announced the PCEHR as a "key building block of the National Health and Hospitals Network". [7] The system went live on 1 July 2012 [8]

Software

The system is based on the XDS (Cross Enterprise Document Sharing) Profile published by Integrating the Healthcare Enterprise (IHE). However, the usual IHE Patient Management system (PIX/PDQ) has been replaced by the National Health Identity (HI) Service. In addition the usual authentication and security IHE profiles have been replaced by, or significantly modified to work with, existing infrastructure.[ citation needed ]

Health Level 7

HL7 CDA format is used to transfer information between different healthcare clinical systems whilst still allowing information to be accessed and viewed

Vendors

The six GP Desktop Vendor Panel members are :-

  • Best Practice Software Pty Ltd
  • Communicare System
  • Genie Solutions
  • iSoft
  • Medtech Global
  • Zedmed [9] [10]

Privacy and confidentiality

Security

National Authentication Service for Health Public Key Infrastructure (NASH PKI)

National Authentication Service for Health Public Key Infrastructure (PKI) is a certificate that authenticates healthcare professionals accessing the eHealth records system. These certificates can be loaded onto smart cards which are then used in combination with the healthcare professionals HPI-I to log on to patients who have a PCEHR using the patients IHI. This system also facilitates secure electronic communications with other healthcare provider organisations. [11]

The PKI allows users to know:

  • who sent the message
  • the message hasn't been altered between sending and receiving it.
  • the sender can't dispute the message they created and sent
  • that only the person the message is directed to can open it [12]

These benefits allow users to securely and confidently relay patient information to trustworthy sources.

For the PKI to work there must be a Chain of Trust on your computer. This Chain of Trust is composed of three certificates, namely:

  1. Medicare Australia Root CA
  2. Medicare Australia Organisation CA
  3. Medicare Australia Organisation CA2 [12]

The PKI Certificates are based on the Australian Gatekeeper framework and met the International Organisation for Standardization (ISO) Health Informatics-Public Key Infrastructure technical specification (ISO/TS 17090). [13]

Costs

It was budgeted to cost $466.7m but had surpassed this to $766m before the actual launch date with the final figure still to be calculated. [14]

In contrast a recent study published by Deloitte [15] projected the PCEHR to save approximately $11.5 billion over the 2010 to 2025 period. This consists of approximately $9.5 billion in net direct benefits to the Australian Government and $2.0 billion in net direct benefits to the private sector. [16]

Take-up

As of 17 February 2013, 1233 healthcare organisations had registered for the PCEHR with NEHTA CEO Peter Fleming estimating 98% of GP-specific software was PCEHR compatible. [17]

At the 7-month mark 56,761 patients had registered with the 12-month target at 500,000 patients. This target figure was still considered achievable according to the DoHA deputy secretary Rosemary Huxtable who had released this information to a Senate Estimates committee. [18]

Legality

On 16 August 2012 the Hon. Tanya Plibersek, the then Minister for Health announced the Personally Controlled Electronic Health Records Act 2012 (PCEHR) [19] The legislation was amended in late 2015 to be known as the My Health Records Act 2012 (Cth) [20]

Patients can read in full everything that is added to their eHealth record. They may choose to include additional information in their own local clinical information system that is not included in the eHealth record. In any event, patients have a right under the Privacy Act 1988 (Cth) to access the personal information that healthcare professionals hold about them. [21]

From November 2015 the My Health Records Act 2012 (Cth) was amended to reflect that representatives of persons who require decision-making support related to the Act must support the person to make decisions, or make decisions on their behalf, reflecting the individual's "will and preferences". This reflects the principle that people with disability or varied capacity have an equal right to have their decisions respected. [22]

Healthcare Identifiers Act 2010 [23] This Act outlines how unique identifying numbers are allocated to each health provider and individuals as healthcare recipients to provide a way of ensuring that health information is correctly matched to the individual that received healthcare or the entity that provides healthcare.

Healthcare Identifiers Regulations 2010 [24] regulates the collection, use and disclosure of healthcare record identifiers and information.

PCEHR Jurisdictional Advisory Committee (PCEHR JAC)

The PCEHR Act established the PCEHR Jurisdictional Advisory Committee (PCEHR JAC) to advise the System Operator on matters relating to the interests of the Commonwealth, States and Territories in the PCEHR system. The PCEHR JAC meets at least four times per year, or more frequently as agreed between the System Operator and the Chair. The PCEHR JAC has nine members, a member to represent the Commonwealth and a member to represent each State and Territory. [25]

PCEHR Independent Advisory Council (PCEHR IAC)

The PCEHR Independent Advisory Council (PCEHR IAC) was established under the PCEHR Act to advise on the operation and participation in the PCEHR system, clinical, privacy and security matters relating to PCEHR system operations. The PCEHR IAC meets at least four times per year. [25]

Registration

Patients are able to opt into the PCEHR by providing personal details such as full name, date of birth, Medicare/Department of Veteran Affairs number, and sex. Currently there are several mediums for consumers to register via:

Identity Verification Code (IVC)

If a consumer registers over the phone, in writing, or in person an identity verification code IVC is issued to enable access to the e-Health record online for the first time. After this first log, or post 30 days from issuance the IVC becomes obsolete. There are four steps in the registration process:

  1. Read the essential information
  2. Create a new or log into your australia.gov.au account
  3. Verify your identity
  4. Set up your e-Health record [27]

Healthcare Identifiers Service (HI Service)

The Healthcare Identifiers Service (HI Service) was established by the federal, state and territory governments to create unique identifiers for healthcare providers and individuals seeking healthcare. It was designed and implemented by Medicare Australia under the control of the NEHTA. The HI Service allocates three types of Healthcare Identifiers: [28] [29]

Individual healthcare identifier (i.e., who received the service)
The Individual Healthcare Identifier (IHI) is a unique 16 digit reference number that is used to identify individuals within the healthcare system.
The healthcare provider can retrieve a registered patients IHI via the Healthcare Identifier Service by entering in the correct name, DOB, and Medicare number which will automatically retrieve the patients unique IHI from the system. This then links the patients with their PCEHR, allowing the healthcare provider to view all the uploaded material. [30]
Health Provider Identifier-Individual (i.e., who provided the service)
The Health Provider Identifier-Individual (HPI-I) is allocated to healthcare providers involved in providing patient care. Healthcare providers belonging to the Australian Health Practitioner Regulation Agency (AHPRA) have automatically been registered for their HPI-I. [31] This unique number allows healthcare providers to access patients PCEHR and also acts as a tracking tool of who has accessed what, what edits were made etc.
Health Provider Identifier-Organisation (i.e., where the service was provided)
The Health Provider Identifier-Organisation (HPI-O) is a unique code for organisations that provide healthcare services. An HPI-O may be linked to several HPI-I's, but an organisation can not have more than one HPI-O. [28]

Incentives

eHealth Practice Incentives Program (ePIP)

The eHealth Practice Incentives Program (ePIP)aims to encourage GP's to adopt and embrace the latest technology and developments within the eHealth industry as they occur. GP's are only eligible for ePIP if they are already registered in the Practice Incentives Program (PIP) administered by the Australian Government Department of Human Services (Human Services) on behalf of the Department of Health and Ageing(DoHA). [32] There are five further requirements for this incentive:

  1. Integrating Healthcare Identifiers into Electronic Practice Records
  2. Secure Messaging Capability
  3. Data Records and Coding
  4. Electronic Transfer of Prescriptions
  5. Personally Controlled Electronic Health (eHealth) Record System [33]

The benefits of participation in this incentive is practices can receive a maximum of $12,500 per quarter, based on $6.50 per Standardised Whole Patient Equivalent (SWPE) per year.

System Operator

The System Operator is the entity that is responsible for creating and operating the PCEHR. Currently this position is held by the Secretary of the Department of Health and Ageing.

The System Operator during their duties must have regard to the advice and recommendations (if any) given by the PCEHR Jurisdictional Advisory Committee and the PCEHR Independent Advisory Council. [34]

Patent Issues

MyMedicalRecords.com, a subsidiary of MMRGlobal has begun investigations about the PCEHR use of its intellectual property. [35]

See also

Related Research Articles

Medicare is the publicly-funded universal health care insurance scheme in Australia, operated by Services Australia. Medicare is the main way Australian citizens and permanent residents access health care in Australia, either partially or fully covering the cost of most primary health care services in the public and private health care system. International visitors from 11 countries have subsidised access to medically necessary treatment under reciprocal agreements. All Australian citizens and permanent residents have access to fully covered health care in public hospitals and clinics.

Medical privacy practice of maintaining the security and confidentiality of patient records

Medical privacy or health privacy is the practice of maintaining the security and confidentiality of patient records. It involves both the conversational discretion of health care providers and the security of medical records. The terms can also refer to the physical privacy of patients from other patients and providers while in a medical facility. Modern concerns include the degree of disclosure to insurance companies, employers, and other third parties. The advent of electronic medical records (EMR) and patient care management systems (PCMS) have raised new concerns about privacy, balanced with efforts to reduce duplication of services and medical errors.

Health Insurance Portability and Accountability Act United States federal law concerning health information

The Health Insurance Portability and Accountability Act of 1996 was enacted by the 104th United States Congress and signed by President Bill Clinton in 1996. It was created primarily to modernize the flow of healthcare information, stipulate how personally identifiable information maintained by the healthcare and healthcare insurance industries should be protected from fraud and theft, and address limitations on healthcare insurance coverage.

Medical record systematic documentation of a single patients medical history and care across time

The terms medical record, health record, and medical chart are used somewhat interchangeably to describe the systematic documentation of a single patient's medical history and care across time within one particular health care provider's jurisdiction. The medical record includes a variety of types of "notes" entered over time by health care professionals, recording observations and administration of drugs and therapies, orders for the administration of drugs and therapies, test results, x-rays, reports, etc. The maintenance of complete and accurate medical records is a requirement of health care providers and is generally enforced as a licensing or certification prerequisite.

Electronic health record data handling used to manage health information and the care of patients

An electronic health record (EHR) is the systematized collection of patient and population electronically-stored health information in a digital format. These records can be shared across different health care settings. Records are shared through network-connected, enterprise-wide information systems or other information networks and exchanges. EHRs may include a range of data, including demographics, medical history, medication and allergies, immunization status, laboratory test results, radiology images, vital signs, personal statistics like age and weight, and billing information.

A National Provider Identifier (NPI) is a unique 10-digit identification number issued to health care providers in the United States by the Centers for Medicare and Medicaid Services (CMS). The NPI has replaced the unique physician identification number (UPIN) as the required identifier for Medicare services, and is used by other payers, including commercial healthcare insurers. The transition to the NPI was mandated as part of the Administrative Simplifications portion of the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

A patient safety organization (PSO) is a group, institution, or association that improves medical care by reducing medical errors. Common functions of patient safety organizations are data collection and analysis, reporting, education, funding, and advocacy.

United States National Health Care Act Proposed U.S. law

The Expanded and Improved Medicare for All Act, also known as Medicare for All or United States National Health Care Act, is a bill first introduced in the United States House of Representatives by former Representative John Conyers (D-MI) in 2003, with 25 cosponsors. As of September 26, 2017, it had 120 cosponsors, a majority of Democrats in the House of Representatives, and the highest level of support the bill has received since Conyers began annually introducing the bill in 2003. As of December 6, 2018, the bill's cosponsors had increased to 124.

Health care in Australia Availability, funding, and provision of health services in Australia

Health care in Australia has a highly developed structure, though because of the nations' vast size, services are not evenly distributed geographically. Health care is delivered in Australia by both government and private companies which are often covered by Medicare. Health care in Australia is largely funded by the government at national, state and local governmental levels, as well as by private health insurance; but the cost of health care is also borne by not-for-profit organisations, with a significant cost being borne by individual patients or by charity. Some services are provided by volunteers, especially remote and mental health services.

Patient portals are healthcare-related online applications that allow patients to interact and communicate with their healthcare providers, such as physicians and hospitals. Typically, portal services are available on the Internet at all hours of the day and night. Some patient portal applications exist as stand-alone web sites and sell their services to healthcare providers. Other portal applications are integrated into the existing web site of a healthcare provider. Still others are modules added onto an existing electronic medical record (EMR) system. What all of these services share is the ability of patients to interact with their medical information via the Internet. Currently, the lines between an EMR, a personal health record, and a patient portal are blurring. For example, Intuit Health and Microsoft HealthVault describe themselves as personal health records (PHRs), but they can interface with EMRs and communicate through the Continuity of Care Record standard, displaying patient data on the Internet so it can be viewed through a patient portal.

Health Information Technology (HIT) is health technology, particularly information technology, applied to health and health care. It supports health information management across computerized systems and the secure exchange of health information between consumers, providers, payers, and quality monitors. Based on an often-cited 2008 report on a small series of studies conducted at four sites that provide ambulatory care – three U.S. medical centers and one in the Netherlands – the use of electronic health records (EHRs) was viewed as the most promising tool for improving the overall quality, safety and efficiency of the health delivery system. According to a 2006 report by the Agency for Healthcare Research and Quality, broad and consistent utilization of HIT will:

popHealth is an open-source reference implementation software tool that automates population health reporting.

An Accountable Care Organization (ACO) is a healthcare organization that ties provider reimbursements to quality metrics and reductions in the cost of care. ACOs in the United States are formed from a group of coordinated health-care practitioners. They use alternative payment models, normally, capitation. The organization is accountable to patients and third-party payers for the quality, appropriateness and efficiency of the health care provided. According to the Centers for Medicare and Medicaid Services, an ACO is "an organization of health care practitioners that agrees to be accountable for the quality, cost, and overall care of Medicare beneficiaries who are enrolled in the traditional fee-for-service program who are assigned to it".

The Health Information Technology for Economic and Clinical Health Act, abbreviated HITECH Act, was enacted under Title XIII of the American Recovery and Reinvestment Act of 2009. Under the HITECH Act, the United States Department of Health and Human Services (U.S.HHS) resolved to spend $25.9 billion to promote and expand the adoption of health information technology. The Washington Post reported the inclusion of "as much as $36.5 billion in spending to create a nationwide network of electronic health records." At the time it was enacted, it was considered "the most important piece of health care legislation to be passed in the last 20 to 30 years" and the "foundation for health care reform."

The National Electronic Health Transition Authority (NEHTA) was established in July 2005 as a collaborative enterprise by the Australian Commonwealth, State and Territory governments to identify and develop the necessary foundations for electronic health (eHealth). NEHTA aims to unlock eHealth system aspects and improve the ways in which information is electronically collected and exchanged.

Health care quality is a level of value provided by any health care resource, as determined by some measurement. As with quality in other fields, it is an assessment of whether something is good enough and whether it is suitable for its purpose. The goal of health care is to provide medical resources of high quality to all who need them; that is, to ensure good quality of life, cure illnesses when possible, to extend life expectancy, and so on. Researchers use a variety of quality measures to attempt to determine health care quality, including counts of a therapy's reduction or lessening of diseases identified by medical diagnosis, a decrease in the number of risk factors which people have following preventive care, or a survey of health indicators in a population who are accessing certain kinds of care.

The Physician Quality Reporting System (PQRS), formerly known as the Physician Quality Reporting Initiative (PQRI), is a health care quality improvement incentive program initiated by the Centers for Medicare and Medicaid Services (CMS) in the United States in 2006. It is an example of a "pay for performance" program which rewards providers financially for reporting healthcare quality data to CMS.

Health care analytics is the health care analysis activities that can be undertaken as a result of data collected from four areas within healthcare; claims and cost data, pharmaceutical and research and development (R&D) data, clinical data, and patient behavior and sentiment data (patient behaviors and preferences,. Health care analytics is a growing industry in the United States, expected to grow to more than $31 billion by 2022. The industry focuses on the areas of clinical analysis, financial analysis, supply chain analysis, as well as marketing, fraud and HR analysis.

Federal and state governments, insurance companies and other large medical institutions are heavily promoting the adoption of electronic health records. The US Congress included a formula of both incentives and penalties for EMR/EHR adoption versus continued use of paper records as part of the Health Information Technology for Economic and Clinical Health (HITECH) Act, enacted as part of the, American Recovery and Reinvestment Act of 2009.

The 2018 SingHealth data breach was a data breach incident initiated by unidentified state actors, which happened between 27 June and 4 July 2018. During that period, personal particulars of 1.5 million SingHealth patients and records of outpatient dispensed medicines belonging to 160,000 patients were stolen. Names, National Registration Identity Card (NRIC) numbers, addresses, dates of birth, race, and gender of patients who visited specialist outpatient clinics and polyclinics between 1 May 2015 and 4 July 2018 were maliciously accessed and copied. Information relating to patient diagnosis, test results and doctors' notes were unaffected. Information on Prime Minister Lee Hsien Loong was specifically targeted.

References

  1. 1 2 "e-Health Part 1: current state of play". Australian Nursing Journal. 20 (2): 20. 1 August 2012. Retrieved 12 May 2013.
  2. Spriggs, Merele; et al. (2012). "Ethical Questions Must be Considered for Electronic Health Records". Journal of Medical Ethics. 38 (9): 535–539. doi:10.1136/medethics-2011-100413. PMID   22573881.
  3. "What is a PCEHR?". NEHTA. Retrieved 12 May 2013.
  4. "PCEHR" . Retrieved 12 May 2013.
  5. "Australia's Health". AIHW. Retrieved 13 May 2013.
  6. For your Information, Australian Audit Commission
  7. "Personally Controlled Electronic Health Records for All Australians". Department of Health and Ageing. Retrieved 13 May 2013.
  8. "Personally controlled electronic health records". Department of Health and Ageing. Retrieved 13 May 2013.
  9. "GP Vendor Panel" . Retrieved 26 May 2013.
  10. Kate, McDonald (17 December 2012). "Practice guide to clinical software PCEHR functionality". Pulse+IT. Retrieved 26 May 2013.
  11. "NASH" . Retrieved 25 May 2013.
  12. 1 2 "Public Key Infrastructure" . Retrieved 25 May 2013.
  13. "Public Key Infrastructure". Medicare. Retrieved 13 May 2013.
  14. Greenwood, Stephen (April 2012). "Political capital: The electronic health record challenge". The Australian Journal of Pharmacy. 93 (1103): 18–19. ISSN   0311-8002 . Retrieved 13 May 2013.
  15. "Federal Budget 2012–13: Health initiatives & expenditure Aged care support, NDIS, dental, Health and Hospital Fund (HHF) projects, PCEHR and PHIAC". Deloitte. Retrieved 13 May 2013.
  16. "Expected benefits of the national PCEHR system". Department of Health and Ageing. Retrieved 13 May 2013.
  17. McDonald, Kate (14 February 2013). "Half a million PCEHR registrations still achievable: DoHA". Pulse+IT. Retrieved 13 May 2013.
  18. Hilvert, John (14 February 2013). "NEHTA shrugs off health records patent threat". itNews. Retrieved 13 May 2013.
  19. "Personally Controlled Electronic Health Records Act 2012". Australian Government. Retrieved 13 May 2013.
  20. "My Health Records Act 2012 (Cth)". Federal Register of Legislation. Australian Government. 6 March 2017.
  21. "Managing a patient's eHealth record". Department of Health and Ageing. Retrieved 13 May 2013.
  22. This followed Recommendation 4-8 of the Australian Law Reform Commission, Equality, Capacity and Disability in Commonwealth Laws, Report No 124 (2014). Further information is available at the explanatory memorandum to the amending legislation. Explanatory Memorandum, Health Legislation Amendment (eHealth) Bill 2015 (Cth) found at https://www.legislation.gov.au/Details/C2015B00163/Explanatory%20Memorandum/Text.
  23. Healthcare Identifiers Act 2010 (Cth) Australian Government. Federal Register of Legislation. Retrieved 6 March 2017 https://www.legislation.gov.au/Details/C2016C00920
  24. Health Identifiers Regulation 2010 (Cth) . Federal Register of Legislation. Australian Government. Retrieved 6 March 2017. https://www.legislation.gov.au/Details/F2016C00096
  25. 1 2 "PCEHR Governance". Archived from the original on 13 May 2013. Retrieved 26 May 2013.
  26. "General consumer FAQs". Department of Health and Ageing. Retrieved 13 May 2013.
  27. "Prepare to register". Department of Health and Ageing. Retrieved 13 May 2013.
  28. 1 2 "About the Healthcare Identifiers Service". eHealth. Archived from the original on 27 April 2013. Retrieved 13 May 2013.
  29. "Healthcare Identifiers for Healthcare Professional" (PDF). eHealth. Archived from the original (PDF) on 27 April 2013. Retrieved 13 May 2013.
  30. "What is an individual healthcare identifier?" . Retrieved 26 May 2013.
  31. "Healthcare Identifiers". AMSANT. Retrieved 13 May 2013.
  32. "Practice Incentives Program (PIP)". Medicare. Retrieved 13 May 2013.
  33. "Getting ready for the PIP eHealth incentive and PCEHR". Australian Medical Association. Retrieved 13 May 2013.
  34. "PCEHR Governance". Department of Health and Ageing. Archived from the original on 13 May 2013. Retrieved 12 May 2013.
  35. Foo, Fran (12 February 2013). "PCEHR patent probe to take weeks". The Australian. Retrieved 12 May 2013.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.