SlideShare uma empresa Scribd logo

Healthcare Small Business

Wirehead Technology
Wirehead Technology

Health IT Deployment: The Essential Role of Small IT Solution Providers

1 de 16
Baixar para ler offline
WHITE PAPER Health IT Deployment: The Essential Role of Small IT Solution Providers www.comptia.org
2 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Contents executive summary 3 Part 1: HealtH it and small Business 4 aBout comptia 4 Part 2: Policy and regulatory landscaPe 5 THE HITECH ACT AnD THE STRATEgIC PlAn 5 SmAll mEDICAl PRovIDERS 6 RolE of IT CommunITy, BARRIERS 7 Part 3: education 8 Part 4: tecHnical assistance 10 Part 5: Privacy and security 11 BuSInESS ASSoCIATE RulE 11 STATE STAnDARDS 12 Part 6: conclusion 13 www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 3 exeCutive summary The health IT transition is a vital step toward improving the quality of care and overall health of patients throughout the united States. Several key legislative efforts have established policies seeking to advance the transition among medical providers. Trends, however, indicate that small medical providers are slow to adopt health IT due to a range of concerns about their ability to navigate complex technologies and the impacts it could have on their practices. At the same time, small IT solution providers have the expertise to be a meaningful partner in the transition, but current policies have restricted their ability to enter the health IT market on a large scale. Several minor changes to existing policy would make great strides towards bringing small IT solution providers into the fold to help advance the transition and remove some of the burden from small medical providers. This paper outlines recommendations within three distinct policy areas: education, technical assistance, and privacy and security. Health IT has the ability to increase the quality of care to patients and usher in significant economic benefits for small businesses across the nation. However, for health IT to be a success, federal policies must understand the important link between small medical providers and small IT solution providers. Policies that foster a partnership between these small businesses will not only allow medical providers to focus on patients, but will also help to grow the economy and keep the u.S. IT industry competitive within a $3 trillion global IT market.
4 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 1: HealtH it and small Business Health information technology (IT) deployment is a vital national priority that has the capability to increase the quality and efficiency of healthcare in the united States, while reducing the overall long- term costs associated with antiquated record keeping and other applications. from eliminating the need for duplicative medical tests to providing healthcare professionals with instant access to patient information, health IT is a key component of modernizing our healthcare systems. Health IT also has the ability to transform our nation’s evolving economy. As Secretary Sebelius noted, “we believe in health information technology Wider adoption of health it has the potential to because it’s an investment in a stronger economy.”1 Two studies, one by generate both internal and external savings: the RAnD Corporation and one by the Center for Information Technology leadership, report estimates of the potential net benefits that could • Internal savings are those that can be captured arise nationwide if all providers and hospitals adopted health information by the provider or hospital that purchases the technology. Both studies estimated annual net savings to the health care system; they are most likely to be in the form sector of about $80 billion, relative to total spending for health care of of reductions in the cost of providing health about $2 trillion per year.2 care—that is, improvements in the efficiency In order to achieve the dual benefits of healthcare optimization and with which providers and hospitals deliver care. economic growth, health IT should be implemented in a manner that allows medical providers to continue to focus on patient care and not be • External savings are those that the provider distracted with complex and expensive new requirements. The IT industry or hospital that purchases the system cannot should be a partner in this process in order to provide a seamless health realize but that accrue to another such provider IT transition, while removing the burden from medical providers. This or perhaps the relevant health insurance partnership will not only allow for more widespread adoption of health IT plan or even the patient. Such savings might among small medical providers, but will also allow healthcare providers arise, for example, from the newfound ability to continue their focus on patients and avoid dedicating staff to new of participants in the health care sector to information technology systems. exchange information more efficiently. As part of a $3 trillion global industry, IT sector employment in the u.S. Source: Congressional Budget Office, Evidence on the Costs and could benefit from healthcare growth in the form of a higher volume Benefits of Health Information Technology of work and in newly created positions. According to the Bureau of labor Statistics, employment of medical records and health information technicians is expected to increase by 20 percent, much faster than the average for all occupations through 2018. great benefits exist for both our healthcare and the economy by effectively integrating the IT community into the health IT transition. aBout Comptia The Computing Technology Industry Association (CompTIA) is a non-profit trade association representing the IT industry. CompTIA represents over 2,000 IT companies. our members are at the forefront of innovation and provide a critical backbone that supports broader commerce and job creation. These members include computer hardware manufacturers, software developers, technology distributors, and IT specialists that help organizations integrate and use technology products and services. CompTIA is dedicated to serving its membership by advancing industry innovation and growth through its educational programs, market research, networking events, and public policy advocacy. 1 Secretary Sebelius Remarks, HIMSS Convention, February 23, 2011. 2 Congressional Budget Office, Evidence on the Costs and Benefits of Health Information Technology: www.cbo.gov/ftpdocs/91xx/doc9168/05-20-HealthIT.pdf. www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 5 CompTIA is also the leading global provider of vendor neutral IT certifications to validate skills in the workplace. over 1.5 million individuals hold one of our certifications, with the vast majority having completed one of our foundational certifications, A+, Security+, and network+. The development and dissemination of these certifications serve the industry by adding to the level of knowledge and professionalization of the IT solution provider. In turn, this allows the IT solution provider to be an ambassador for the IT industry, bringing to its client a voice of technical knowledge and support. CompTIA offers its members and the industry at large numerous training and credential programs to help them enter the health IT market, among other IT verticals. The CompTIA Healthcare IT Technician certificate covers the knowledge and skills required to implement, deploy, and support health IT systems in various clinical settings. The exam covers regulatory requirements, organizational behavior, IT operations, medical business operations and security. The exam is intended for IT professionals who are CompTIA A+ certified or have 500 hours of hands-on IT technical experience in the lab or field, plus the knowledge/skills necessary to deploy and support health IT systems. on the business side, CompTIA offers a suite of training courses and educational tools to help IT companies maintain best practices when developing and implementing IT solutions for healthcare offices and hospitals. Part 2: PoliCy and regulatory landsCaPe The HITECH Act and the Strategic Plan The Health Information Technology for Economic and Clinical Health (HITECH) Act was signed into law as part of the American Recovery and Reinvestment Act in 2009. The legislation makes significant progress in providing incentives for early adoption of Electronic Health Records (EHRs) through incentive payments for What is “Meaningful Use”? achieving the “meaningful use of electronic The American Recovery and Reinvestment Act health records” standard, which are later of 2009 specifies three main components of replaced by penalties for noncompliance. Meaningful Use: Achieving the “meaningful use” standard 1. The use of a certified EHR in a meaningful adds an additional layer of concern for manner, such as e-prescribing. medical providers as the path to reaching 2. The use of certified EHR technology for “meaningful use” remains unclear to many electronic exchange of health information to small medical providers. The legislation improve quality of health care. also codifies the office of national 3. The use of certified EHR technology to submit Coordinator for Health Information clinical quality and other measures. Technology (onCHIT), expands the requirements of the Health Insurance According to the Centers for Medicare & Medicaid Services, “meaningful use” means providers need Portability and Accountability Act (HIPAA), to show they’re using certified EHR technology in and provides several funding opportunities ways that can be measured significantly in quality to assist in the transition. and in quantity.
6 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Recently, the office of national Coordinator (onC) released the “federal Healthcare IT Strategic Plan: 2011-2015,” which outlined five general goals: • Achieve adoption and information exchange through meaningful use of healthcare IT. • Improve care, improve population health, and reduce healthcare costs through use of healthcare IT. • Inspire confidence and trust in healthcare IT. • Empower individuals with healthcare IT to improve their health and the healthcare system. • Achieve rapid learning and technological advancement. Thus far, the federal government has taken significant steps towards achieving these goals; however participation by small and medium sized medical providers has not achieved full potential. In order to realize better health outcomes, a more efficient delivery of medical services, and a satisfied patient base, it is important that more small medical providers participate and that IT solution providers be made a partner in achieving these goals. • Achieve adoption and information exchange through meaningful use of healthcare IT. • Improve care, improve population health, and reduce healthcare costs through use of healthcare IT. • Inspire confidence and trust in healthcare IT. • Empower individuals with healthcare IT to improve their health and the healthcare system. • Achieve rapid learning and technological advancement. Small Medical Providers Early trends indicate that small medical practices are less likely to transition to electronic medical records, despite incentives provided within the HITECH Act. According to the office of national Coordinator, only 41% of small medical providers will be compliant with digital health record records by 2014. In many cases, small medical providers are concerned about the lack of staff resources they have to dedicate to a health IT system. According to farzad mastashari, national Coordinator, small medical providers “often lack staff with IT training and don’t have the background or Reasons for Not yet Adopting EMR the time to do it themselves.” 3 Not a Minor Major Factor Factor Factor There continues to be a concern that implementing Upfront costs of EMR 7% 18% 75% health IT in small practices will become the responsibility Ongoing operational costs of EMR 8% 29% 64% of medical staff and, ultimately, take them away from their primary focus. At a recent Congressional hearing, Impact on existing work flow or processes 14% 27% 59% a small medical provider highlighted this concern by Training and user adoption issues 12% 38% 50% stating, “I fear the effect it may have on my practice in terms of the disruption of care that I can provide Interoperability or technology standards issues 16% 42% 41% to my patients during the procurement of hardware and software, converting patient records, learning and Data security/privacy 19% 43% 39% implementing the system as a practitioner, and training Decision driven by parent hospital 38% 29% 33% staff. And while I certainly understand that an EmR system would benefit patients, will it require more—or Don’t think it will improve patient care 25% 44% 31% less—physician and staff time, and will it ultimately be Existing EMR Technology not 34% 44% 31% beneficial to my practice?”4 good enough Source: CompTIA 2nd Annual Healthcare IT Market: Insights and Opportunities study 3 Farzad Mastashari, Testimony before the House Small Business Subcommittee on Healthcare and Technology, June 2, 2011. 4 Denise Lea Elliott, Testimony before the House Small Business Subcommittee on Healthcare and Technology, June 2, 2011. www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 7 While the HITECH Act is an important framework for advancing health IT, the legislation does not promote the significant role the IT community, particularly IT solution providers, should play in the transition to electronic medical records, especially for small medical providers. As HHS Secretary Sebelius noted in a recent speech, “switching from paper to electronic records is never easy. But it is a lot harder for the small practice with limited staff and resources than it is for the major hospital with a trained IT team and a big budget for capital improvements.”5 The IT industry has the ability to help fill the health IT void among small medical providers and reverse the current trend away from implementation. However, small IT providers have significant barriers to participating in the health IT transition. Role of IT Community, Barriers Current estimates are that the unites States will need 50,000 more health IT workers to help medical providers achieve meaningful Small Medical use of electronic medical records.6 yet, the Providers IT industry has a long track record of growth and is uniquely positioned to fill this void— particularly among small and medium-sized IT firms. According to a 2010 Small Business Administration report, small firms accounted Federal Small IT for 65% (or 9.8 million) of the 15 million net Government Providers new jobs created between 1993 and 2009. furthermore, small businesses hire 40 percent of high tech workers (such as scientists, engineers, and computer programmers).7 While the IT solution provider could play a significant role helping small medical providers overcome the challenges of implementing health IT, a variety of barriers exist that have prevented IT solution providers from entering the market in meaningful numbers. In general, the HITECH Act and the strategy presented by the onC both have a significant focus on the medical provider, yet do not mention the role IT solution providers could play in a successful transition. Therefore, the entire burden has been placed on the medical providers themselves, without a focus on partnering with IT solution providers. There are also specific barriers preventing small and medium sized IT businesses from helping achieve the healthcare and economic potential, such as: • A lack of resources for retraining IT professionals, • fully integrating IT professionals in the assistance provided by the Regional Extension Centers, and, • Data breach provisions that place unfair burdens on IT professionals. While these barriers could significantly limit entry for IT professionals and, therefore, limit the success of the health IT transition for small medical providers, there are opportunities to overcome these barriers. We explore each of these areas below. 5 Secretary Sebelius Remarks, HIMSS Convention, February 23, 2011. 6 EHR Institute: www.ehrinstitute.org/ehrhow/group-blog.blog/2010/09/08/Additional-50-000-Health-IT-Workers-Needed-to-Impl. 7 Small Business Administration, Frequently Asked Questions: web.sba.gov/faqs/faqIndexAll.cfm?areaid=24.
8 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 3: eduCation PoliCy reCommendation > Provide support and resources toward retraining current it professionals in health it specialties. Current situation The current economic slowdown is having a profound effect on the labor market as workers shift to adapt to new realities. As Secretary of labor Hilda Solis noted, “As the economy recovers, the labor market will continue to evolve. To remain competitive, we need to ensure that industry has the labor it needs to innovate and expand, and that displaced workers have the skills to compete for these new jobs.” Health care-sector jobs have continued to grow throughout this recession, and this growth is expected to continue as the American population ages.8 The Bureau of labor Statistics estimates that medical records and health information technicians held about 172,500 jobs in 2008. Jobs are expected to grow by 20%, or about 35,100 new jobs, for the decade 2008-2018. The office of national Coordinator estimates that 50,000 IT workers will be needed to meet the EHR requirements of “meaningful use.” To meet this need, there has been a significant focus on recruitment of new individuals trained in health IT at the college and university level through scholarships and grants made available by the American Recovery and Reinvestment Act. CompTIA very much supports this focus as demonstrated by our deep commitment to, and active participation with, the midwest HIT Regional College Consortium and to the HHS/Dol Career Clusters effort. However, from our experience, more attention and resources need to be provided to training existing IT professionals who already have basic IT skills but who need additional help in adding a health IT “bolt-on” to their considerable knowledge and experience in IT. many of these professionals will go through private training centers and/or will audit courses at their local community college or university, and then take a certification test to validate those skills allowing them to more rapidly become conversant in health IT. This summer, CompTIA launched its own healthcare IT technician certificate, a vendor- and technology-neutral credential that validates the operational, regulatory and security knowledge necessary to provide hardware and software support in medical environments where EHR systems are used. oCCuPational ProjeCtions data: mediCal reCords and HealtH information teCHniCians employment employment Change Job openings due to growth and (2008-19) replacement needs 2008 2018 numBer PerCent 2008-2018 172,500 207,600 35,100 20.3 70,300 Source: U.S. Bureau of Labor Statistics Typical coursework in health information technology includes medical terminology, anatomy and physiology, health data requirements and standards, clinical classification and coding systems, data analysis, healthcare reimbursement methods, database security and management, and quality improvement methods.9 While bringing new people into the profession is important, the existing IT community must not be forgotten and, indeed, should be leveraged more effectively as we work to 8 Politico: www.politico.com/news/stories/0710/40195.html. 9 U.S. Bureau of Labor Statistics: www.bls.gov/oco/ocos103.htm. www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 9 draw current IT professionals into new careers. These men and women can be activated very rapidly to help with the transition toward health IT, but they need some economic assistance to offset some of the costs of this sizeable investment. solution Provider Hit training needs Hit training needs Very Critical somewhat Not Critical need Critical Need Compliance/regulatory mandates (HIPAA) 45% 36% 20% Healthcare workflow processes 42% 43% 15% Software applications such as EMR 41% 40% 18% How to access federal stimulus funds 39% 45% 17% Business strategies for entering a new market 37% 47% 16% sales training 31% 47% 22% Source: CompTIA’s 2nd Annual Healthcare IT Market: Insights and Opportunities study oPPortunity President Barack obama said that “one thing government can do is partner with the private sector to make sure that every worker has the necessary skills for the jobs they’re applying for.”10 Policies such as an HIT education tax credit or direct lending to offset education and other costs would provide valuable resources to allow workers with IT knowledge to shift their focus to the growing health IT sector, allowing tens of thousands of IT workers to take advantage of the national push for the benefits surrounding EmRs. However, we understand the fiscal pressures that are having a profound impact across federal budgets and initiatives. Because of that, we recommend adapting existing tax credit programs to help retrain current IT professionals and then phase credits out over time. In particular, we encourage policymakers to amend the lifetime learning Credit and Business Education Tax Deduction so that individuals and IT solution providers could offset some of the expense of earning appropriate certifications and skills for the HIT marketplace. These initiatives can provide the necessary incentive to defray the costs for business owners, while ensuring that the workforce is capable of handling the challenge ahead. further, we recommend that capital support for small IT businesses should be provided by re-allocating funds from existing programs designed to assist small businesses, such as the Small Business lending fund. While a total of $30 billion has been allocated to the Small Business lending fund, at this point, applications for only $12 billion has been received. Accordingly, we recommend undistributed funds be redirected to address these HIT funding needs. 10 Wall Street Journal: online.wsj.com/article SB10001424052702304259304576379142910970126.html.
10 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 4: teCHniCal assistanCe PoliCy reCommendation > ensure that regional extension centers (recs) work to educate and integrate small it firms into the health it transition. Current situation The office of national Coordinator has used $677 million to fund 62 Regional Extension Centers throughout the nation. According to the onC, the goals of the RECs “include outreach and education, EHR support (e.g., working with vendors, helping choose a certified EHR system), and technical assistance in implementing health IT and using it in a meaningful way to improve care.”11 The RECs have the ability to greatly impact the EHR transition, especially among small medical providers. According to David Blumenthal, the former national Coordinator, “conversion from paper to electronic health records is a challenging task for any provider, and we believe that help from the RECs will make an important difference, especially in assisting doctors in smaller practices and the smaller and rural hospitals.”12 The outreach and technical assistance RECs could provide should not only increase participation, but reduce costs for the providers. In order to best serve medical providers and encourage greater participation, RECs should universally expand their focus to everyone that plays a role in the transition and not limit their focus to medical providers—many of which will outsource their IT work to a third party. Small IT solution providers can play a significant role in helping small medical providers with the transition to EHRs; however, RECs greatly vary in their approach to small IT firms. In some cases, RECs are doing very little to establish a connection between small IT firms and small medical providers, which leaves small medical providers without a vital component of a successful EHR transition. While most RECs identify themselves as vendor neutral, many have preferred vendor lists that vary significantly in terms of preferred vendors and overall structure. Additionally, REC websites vary significantly, which reduces their ability to advance their outreach goals. In most cases, they provide little information for IT professionals that could be carrying out the transition and focus entirely on the medical providers, which remain hesitant to move forward. The absence of a universal commitment by the RECs to integrate small IT firms into the transition will not only impact the ability of small medical providers to participate in the transition, but will also limit their ability to focus on patient care. 11 Office of National Coordinator: healthit.hhs.gov/portal/server.pt/community/facts_at_a_glance/1835/home/17870. 12 David Blumenthal: www.regionalextensioncenters.com. www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 11 oPPortunity CompTIA strongly supports the concept of Regional Extension Centers that will assist in the EHR transition, especially for small medical providers that continue to struggle without clear direction. It is important, however, that the RECs have a uniform process that facilitates communication and outreach to all parties involved in the transition. While some RECs are already effectively doing this, it is important to ensure that RECs across the nation are providing uniform services to best reach the goal of a successful EHR transition. RECs should have a list of local solution providers that are readily available to medical providers. These lists should be neutral and provide a diverse menu of local options to assist with the EHR transition. RECs should also offer guidance and training to IT solution providers on “meaningful use,” data breach, and notification standards. Additionally, the RECs should actively work to partner medical providers with IT solution providers and resist attempting to serve as the IT solution provider themselves. In some cases, RECs are establishing venues (similar to job fairs) that would connect these two vital components of the EHR transition, which is a model that should be used throughout the country. CompTIA is working to make sure IT companies are well-versed in the specific IT needs of healthcare providers, and has created a suite of training courses and educational tools to that end. PART 5: PRIVACy ANd SECURITy PoliCy reCommendation > amend the Business associate rule. > enact federal preemption for data breach standards and notification requirements, including elimination of private rights of action. Current situation In general, CompTIA applauds the efforts made under the HITECH Act to raise privacy standards for personal health information (PHI). Consumer and medical trust in health IT will only come to pass if there is strong respect for, and protection and enforcement of, personal health information. With that said, there are a series of notable provisions that will present substantial burden on the small IT solution provider that could severely restrict entry and competition in the HIT space. Business Associate Rule under the HITECH Act, business associates and subcontractors of the covered entities are now directly liable under HIPAA for complying with the security and privacy rules. originally, the HIPAA Security Rule required a covered entity to maintain administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of all PHI the covered entity
12 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers creates, receives, maintains, or transmits. However, the HITECH Act extended the application of the HIPAA Security Rule’s provisions on administrative, physical, and technical safeguards and documentation requirements to business associates of covered entities, making those business associates subject to civil and criminal liability for violations of the HIPAA Security Rule. This change represents a departure from HIPAA where the liability for business associates was based on the applicable business associate contract with the covered entity. This means that a small IT solution provider can now be exposed to criminal penalties and civil fines that can range up to $1.5 million—a crushing amount for a business with 20 employees or less. state standards Today, over 45 states have data breach notification requirement laws on the books with varying requirements and standards. When the HITECH Act was enacted, the new law specifically allowed states to maintain their individual data notification laws, so long as the state laws did not provide less protection than the HIPAA Privacy Rule. Because of this, states were authorized with few limitations under the HITECH Act to create new requirements that impose additional limitations on the use and disclosure of protected health information, including adding new parameters on how data breach notifications must be managed. This interplay between state and federal standards can be a source of great confusion to a small business in the HIT space. for example, under the HITECH Act a data breach notification must be provided within 60 days of a breach, but in states like massachusetts, a notice of data breach must be provided within 45 days. Even more complicating, under the business associate rule, the notice requirement is triggered if a vendor knows, or “should have known” that a breach occurred had the vendor undertaken “reasonable diligence.” yet the massachusetts data breach law requires a vendor to provide notice when it “knows or has reason to know of a breach of security.” 13 These variances can cause small IT solution providers millions did you Know? of dollars in aggregated compliance and legal costs. The Poneman Institute recently calculated that furthermore, because the HITECH Act does not preempt state data the average cost of a data breach is $204 per breach notification laws that are more stringent, small IT solution compromised customer or patient record. This providers remain exposed to civil litigation through private rights of action. Currently, over ten states maintain data breach notification includes $144 in indirect costs and $60 in direct laws with private right of action provisions, subjecting small businesses costs. The cost per record of a data breach to significant legal exposure and risk. for example, any resident of involving a laptop computer or other mobile California can file a civil action under the state’s data breach notification device is $225. These costs result from a complex law, which includes data breaches of medical health information. The web of competing and conflicting state data costs associated with defending a civil lawsuit, regardless of merit, can be devastating to a small IT solution provider and pose a significant breach laws for protected medical information. barrier to entry. Source: For the Record: To be clear, CompTIA believes that there should be strong and robust www.fortherecordmag.com/archives/013111p14.shtml protections for the management, storage, and transmission of protected medical health data. However, when states are allowed to implement their own patchwork requirements, the results often pose a significant barrier affecting consumers, medical practices, and IT firms. 13 Commonwealth of MA: www.malegislature.gov/Laws/GeneralLaws/PartI/TitleXV/Chapter93H/Section3. www.comptia.org
White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 13 oPPortunity CompTIA strongly believes that there must be robust protection and enforcement of personal health information. only by ensuring significant security precautions will we as a nation be able to usher in the opportunity surrounding health IT, from both a medical delivery and economic standpoint. modifications to the provisions noted above can ensure significant protection of PHI while fostering a competitive and open environment for small to medium sized health IT solution providers. Specifically, CompTIA believes that the HITECH Act should be revised to serve not just as the floor, but also as the ceiling for data notification requirements. CompTIA has long supported federal preemption for data breach standards and notification, and the evolution of HIPAA under the HITECH Act makes this an even more integral change for small HIT providers. one consistent law across the country with an agreed upon definition of a breach and notification time period, as well as elimination of private rights of action, could save small and medium size IT solution providers millions of dollars in reduced compliance and legal costs associated with data breach notification requirements. Such an approach would eliminate uncertainty and confusion as to what the obligation of a business would be in the event of a data breach. CompTIA also supports the HIPAA liability model in place prior to the enactment of the HITECH Act. under the HIPAA Privacy and Security Rules, business associates and related third parties had a contractual obligation to certify that an IT firm met the HIPAA privacy and security obligations. These certifications created a competitive incentive for IT firms to offer the highest standard of privacy and security compliance. Instead, the new framework of fines serves as a disincentive to new entrants that would otherwise offer competent IT services. PART 6: CONClUSION Small IT solution providers are well positioned to play a significant role in the health IT transition as a result of their expertise and unique skill set. given that the overall goal of health IT is to increase the quality of care and improve patient health, federal policies should allow medical providers to focus on patients and open the door for IT solution providers to focus on making the transition as efficient and effective and possible. A strong partnership between the federal government, medical providers, and the IT industry is critical to ensure a successful future for patient health as well as ensure strong economic benefits as a result of this transition. However, many federal programs and policies seeking to advance health IT and encourage broad support have left small IT solution providers on the sidelines, placing medical providers at a disadvantage and significantly burdening market entry for a vital component to our nation’s IT industry.
14 WHite PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers federal policies should reflect the important role small IT solution providers can play in the health IT transition and create avenues for them to fully participate. Doing so will help to expand adoption by medical providers and increase the quality of care to patients. Participation by small IT providers will also help drive job creation and retention, keeping America’s small business backbone as an economic engine for generations to come. Health IT has significant potential and opportunity. CompTIA and its member companies look forward to continued engagement and dialogue with policymakers to ensure that health IT is successful and that patients, small business, and our economy all see a healthier future. www.comptia.org
www.comptia.org CompTIA Worldwide Headquarters CompTIA member Services, llC 3500 lacey Road, Suite 100, Downers grove, Illinois 60515 630.678.8300 www.comptia.org © 2011 CompTIA Properties, llC, used under license by CompTIA member Services, llC. All rights reserved. All membership activities and offerings to members of CompTIA, Inc. are operated exclusively by CompTIA member Services, llC. CompTIA is a registered trademark of CompTIA Properties, llC in the u.S. and internationally. other brands and company names mentioned herein may be trademarks or service marks of CompTIA Properties, llC or of their respective owners. Reproduction or dissemination prohibi- ted without written consent of CompTIA Properties, llC. Printed in the u.S. July 2011 1617-uS 16

Recomendados

Enabling Healthcare Reform Using IT
Enabling Healthcare Reform Using ITEnabling Healthcare Reform Using IT
Enabling Healthcare Reform Using ITGuardEra Access Solutions, Inc.
 
ITSM Healthcare
ITSM HealthcareITSM Healthcare
ITSM Healthcarewdpowel
 
Ge ehealth-Top Trends
Ge ehealth-Top TrendsGe ehealth-Top Trends
Ge ehealth-Top TrendsCisco - Strategic Marketing + Communications Team
 
Health e-world (healthy world)
Health e-world (healthy world)Health e-world (healthy world)
Health e-world (healthy world)Bukmarker
 
mHealth Insights for Wireless Carrier
mHealth Insights for Wireless CarriermHealth Insights for Wireless Carrier
mHealth Insights for Wireless CarrierKarthik Ethirajan
 
arcsight_scmag_hcspecial
arcsight_scmag_hcspecialarcsight_scmag_hcspecial
arcsight_scmag_hcspecialPaul Brian Contino
 
Technology Meets Medicine: Business Models and Distribution Strategies
Technology Meets Medicine: Business Models and Distribution StrategiesTechnology Meets Medicine: Business Models and Distribution Strategies
Technology Meets Medicine: Business Models and Distribution Strategiesguest1fee1
 
Industry and Firm Analysis
Industry and Firm AnalysisIndustry and Firm Analysis
Industry and Firm AnalysisAshley Leonzio
 

Recomendados

Enabling Healthcare Reform Using IT
Enabling Healthcare Reform Using ITEnabling Healthcare Reform Using IT
Enabling Healthcare Reform Using ITGuardEra Access Solutions, Inc.
 
ITSM Healthcare
ITSM HealthcareITSM Healthcare
ITSM Healthcarewdpowel
 
Ge ehealth-Top Trends
Ge ehealth-Top TrendsGe ehealth-Top Trends
Ge ehealth-Top TrendsCisco - Strategic Marketing + Communications Team
 
Health e-world (healthy world)
Health e-world (healthy world)Health e-world (healthy world)
Health e-world (healthy world)Bukmarker
 
mHealth Insights for Wireless Carrier
mHealth Insights for Wireless CarriermHealth Insights for Wireless Carrier
mHealth Insights for Wireless CarrierKarthik Ethirajan
 
arcsight_scmag_hcspecial
arcsight_scmag_hcspecialarcsight_scmag_hcspecial
arcsight_scmag_hcspecialPaul Brian Contino
 
Technology Meets Medicine: Business Models and Distribution Strategies
Technology Meets Medicine: Business Models and Distribution StrategiesTechnology Meets Medicine: Business Models and Distribution Strategies
Technology Meets Medicine: Business Models and Distribution Strategiesguest1fee1
 
Industry and Firm Analysis
Industry and Firm AnalysisIndustry and Firm Analysis
Industry and Firm AnalysisAshley Leonzio
 
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOsHealthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOsNicholas Christiano Jr.
 
HealthcareUnbound
HealthcareUnboundHealthcareUnbound
HealthcareUnboundtobyo_init
 
Ensuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information SecurityEnsuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information SecurityRedspin, Inc.
 
Responding to the hit imperative february 2016
Responding to the hit imperative february 2016Responding to the hit imperative february 2016
Responding to the hit imperative february 2016Rex James Burgdorfer
 
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...Cognizant
 
From Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for HealthcareFrom Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for HealthcareCognizant
 
Top 10 canada health innovations 2011
Top 10 canada health innovations 2011Top 10 canada health innovations 2011
Top 10 canada health innovations 2011hosnah
 
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...Apthealth
 
PKI Concerns in Healthcare
PKI Concerns in HealthcarePKI Concerns in Healthcare
PKI Concerns in Healthcarebarnetdh
 
Health Information Technology Implementation Challenges and Responsive Soluti...
Health Information Technology Implementation Challenges and Responsive Soluti...Health Information Technology Implementation Challenges and Responsive Soluti...
Health Information Technology Implementation Challenges and Responsive Soluti...International Journal of Modern Research in Engineering and Technology
 
4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue Cycle4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue CycleMeduit
 
Healthcare in Digital Age
Healthcare in Digital Age Healthcare in Digital Age
Healthcare in Digital Age ict moph
 
Weds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10finalWeds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10finalpjmagnanti
 
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...Paul Brian Contino
 
Governance healthcare financial lever
Governance healthcare financial lever Governance healthcare financial lever
Governance healthcare financial lever ACCESS Health Digital
 
Industry and Firm Analysis
Industry and Firm AnalysisIndustry and Firm Analysis
Industry and Firm AnalysisAshley Leonzio
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trendsrmcsoft
 
Healthcare trends and opportunities
Healthcare trends and opportunitiesHealthcare trends and opportunities
Healthcare trends and opportunitiesFounding Fuel
 
Healthcare IT Trends
Healthcare IT TrendsHealthcare IT Trends
Healthcare IT TrendsDavid Edgerton, Jr.
 
Leading Your Business Customer
Leading Your Business Customer Leading Your Business Customer
Leading Your Business Customer Dean Stevens
 
Product owner team agile2015 dean stevens
Product owner team agile2015 dean stevensProduct owner team agile2015 dean stevens
Product owner team agile2015 dean stevensDean Stevens
 
Kanban: Foundation for Leadership
Kanban: Foundation for LeadershipKanban: Foundation for Leadership
Kanban: Foundation for LeadershipDean Stevens
 

Mais conteúdo relacionado

Mais procurados

Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOsHealthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOsNicholas Christiano Jr.
 
HealthcareUnbound
HealthcareUnboundHealthcareUnbound
HealthcareUnboundtobyo_init
 
Ensuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information SecurityEnsuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information SecurityRedspin, Inc.
 
Responding to the hit imperative february 2016
Responding to the hit imperative february 2016Responding to the hit imperative february 2016
Responding to the hit imperative february 2016Rex James Burgdorfer
 
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...Cognizant
 
From Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for HealthcareFrom Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for HealthcareCognizant
 
Top 10 canada health innovations 2011
Top 10 canada health innovations 2011Top 10 canada health innovations 2011
Top 10 canada health innovations 2011hosnah
 
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...Apthealth
 
PKI Concerns in Healthcare
PKI Concerns in HealthcarePKI Concerns in Healthcare
PKI Concerns in Healthcarebarnetdh
 
4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue Cycle4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue CycleMeduit
 
Healthcare in Digital Age
Healthcare in Digital Age Healthcare in Digital Age
Healthcare in Digital Age ict moph
 
Weds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10finalWeds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10finalpjmagnanti
 
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...Paul Brian Contino
 
Governance healthcare financial lever
Governance healthcare financial lever Governance healthcare financial lever
Governance healthcare financial lever ACCESS Health Digital
 
Industry and Firm Analysis
Industry and Firm AnalysisIndustry and Firm Analysis
Industry and Firm AnalysisAshley Leonzio
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trendsrmcsoft
 
Healthcare trends and opportunities
Healthcare trends and opportunitiesHealthcare trends and opportunities
Healthcare trends and opportunitiesFounding Fuel
 

Mais procurados (19)

Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOsHealthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
Healthcare - Customer-Centric Healthcare Best Practices for CIO and CISOs
 
HealthcareUnbound
HealthcareUnboundHealthcareUnbound
HealthcareUnbound
 
Ensuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information SecurityEnsuring Security and Privacy in the HIE Market - Redspin Information Security
Ensuring Security and Privacy in the HIE Market - Redspin Information Security
 
Responding to the hit imperative february 2016
Responding to the hit imperative february 2016Responding to the hit imperative february 2016
Responding to the hit imperative february 2016
 
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
A Smart and Connected Ecosystem for Faster Return to Work for Disability and ...
 
From Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for HealthcareFrom Chaos to Catalyst: Five Imperatives for Healthcare
From Chaos to Catalyst: Five Imperatives for Healthcare
 
Top 10 canada health innovations 2011
Top 10 canada health innovations 2011Top 10 canada health innovations 2011
Top 10 canada health innovations 2011
 
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
AptSpend - Physicians sunshine act solution - aggregate spend solution - v3 -...
 
PKI Concerns in Healthcare
PKI Concerns in HealthcarePKI Concerns in Healthcare
PKI Concerns in Healthcare
 
Health Information Technology Implementation Challenges and Responsive Soluti...
Health Information Technology Implementation Challenges and Responsive Soluti...Health Information Technology Implementation Challenges and Responsive Soluti...
Health Information Technology Implementation Challenges and Responsive Soluti...
 
4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue Cycle4 Digital Health Trends Affecting Your Revenue Cycle
4 Digital Health Trends Affecting Your Revenue Cycle
 
Healthcare in Digital Age
Healthcare in Digital Age Healthcare in Digital Age
Healthcare in Digital Age
 
Weds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10finalWeds tech med_summit2010_shs_11.10.10final
Weds tech med_summit2010_shs_11.10.10final
 
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
Improving Care Coordination with Big Data, Analytics and Technology - Paul Co...
 
Governance healthcare financial lever
Governance healthcare financial lever Governance healthcare financial lever
Governance healthcare financial lever
 
Industry and Firm Analysis
Industry and Firm AnalysisIndustry and Firm Analysis
Industry and Firm Analysis
 
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and TrendsTechTalks | Digital Transformation in Healthcare: Opportunities and Trends
TechTalks | Digital Transformation in Healthcare: Opportunities and Trends
 
Healthcare trends and opportunities
Healthcare trends and opportunitiesHealthcare trends and opportunities
Healthcare trends and opportunities
 
Healthcare IT Trends
Healthcare IT TrendsHealthcare IT Trends
Healthcare IT Trends
 

Destaque

Leading Your Business Customer
Leading Your Business Customer Leading Your Business Customer
Leading Your Business Customer Dean Stevens
 
Product owner team agile2015 dean stevens
Product owner team agile2015 dean stevensProduct owner team agile2015 dean stevens
Product owner team agile2015 dean stevensDean Stevens
 
Kanban: Foundation for Leadership
Kanban: Foundation for LeadershipKanban: Foundation for Leadership
Kanban: Foundation for LeadershipDean Stevens
 
Improving patient flow value stream management
Improving patient flow value stream managementImproving patient flow value stream management
Improving patient flow value stream managementKnowlittle Matharu
 
Lean agile capability analysis talk capability analysis
Lean agile capability analysis talk capability analysisLean agile capability analysis talk capability analysis
Lean agile capability analysis talk capability analysisDean Stevens
 
Study: The Future of VR, AR and Self-Driving Cars
Study: The Future of VR, AR and Self-Driving CarsStudy: The Future of VR, AR and Self-Driving Cars
Study: The Future of VR, AR and Self-Driving CarsLinkedIn
 

Destaque (7)

Leading Your Business Customer
Leading Your Business Customer Leading Your Business Customer
Leading Your Business Customer
 
Product owner team agile2015 dean stevens
Product owner team agile2015 dean stevensProduct owner team agile2015 dean stevens
Product owner team agile2015 dean stevens
 
Kanban: Foundation for Leadership
Kanban: Foundation for LeadershipKanban: Foundation for Leadership
Kanban: Foundation for Leadership
 
Improving patient flow value stream management
Improving patient flow value stream managementImproving patient flow value stream management
Improving patient flow value stream management
 
Value of flow
Value of flowValue of flow
Value of flow
 
Lean agile capability analysis talk capability analysis
Lean agile capability analysis talk capability analysisLean agile capability analysis talk capability analysis
Lean agile capability analysis talk capability analysis
 
Study: The Future of VR, AR and Self-Driving Cars
Study: The Future of VR, AR and Self-Driving CarsStudy: The Future of VR, AR and Self-Driving Cars
Study: The Future of VR, AR and Self-Driving Cars
 

Semelhante a Healthcare Small Business

16072-EMC-HealthcareIDC-eBook-1.27
16072-EMC-HealthcareIDC-eBook-1.2716072-EMC-HealthcareIDC-eBook-1.27
16072-EMC-HealthcareIDC-eBook-1.27Simona Vellani
 
16072 emc-healthcare idc-ebook-1.27
16072 emc-healthcare idc-ebook-1.2716072 emc-healthcare idc-ebook-1.27
16072 emc-healthcare idc-ebook-1.27Simona Vellani
 
Call for Action Enabling Healthcare Reform Using Information Technology
Call for Action Enabling Healthcare Reform Using Information TechnologyCall for Action Enabling Healthcare Reform Using Information Technology
Call for Action Enabling Healthcare Reform Using Information Technologymhart007
 
Hit Primary Care July07
Hit Primary Care July07Hit Primary Care July07
Hit Primary Care July07primary
 
Healthcare intel it 443835 443835
Healthcare intel it 443835 443835Healthcare intel it 443835 443835
Healthcare intel it 443835 443835Liberteks
 
U.S. Healthcare - Converting Vision to Reality
U.S. Healthcare - Converting Vision to RealityU.S. Healthcare - Converting Vision to Reality
U.S. Healthcare - Converting Vision to RealityCognizant
 
A Roadmap for Optimizing Clinical Decision Support
A Roadmap for Optimizing Clinical Decision SupportA Roadmap for Optimizing Clinical Decision Support
A Roadmap for Optimizing Clinical Decision SupportHealth Catalyst
 
اینترنت اشیاء در حوزه سلامت
اینترنت اشیاء در حوزه سلامت اینترنت اشیاء در حوزه سلامت
اینترنت اشیاء در حوزه سلامت Mahmood Khosravi
 
Practical guide on private funding for EU eHealth SMEs
Practical guide on private funding for EU eHealth SMEsPractical guide on private funding for EU eHealth SMEs
Practical guide on private funding for EU eHealth SMEsgetslidesdeck
 
Digital Health in the UK: An industry study for the Office of Life Sciences
Digital Health in the UK: An industry study for the Office of Life SciencesDigital Health in the UK: An industry study for the Office of Life Sciences
Digital Health in the UK: An industry study for the Office of Life SciencesPatients Know Best
 
Connected Care: Technology-Enabled Care at Home
Connected Care: Technology-Enabled Care at HomeConnected Care: Technology-Enabled Care at Home
Connected Care: Technology-Enabled Care at Homewhatifound
 
Webinar: Overcoming it challenges
Webinar: Overcoming it challengesWebinar: Overcoming it challenges
Webinar: Overcoming it challengesModern Healthcare
 
Where to get primary health information
Where to get primary health informationWhere to get primary health information
Where to get primary health informationthomas654564
 
How the Internet of Things Is Transforming Medical Devices
How the Internet of Things Is Transforming Medical DevicesHow the Internet of Things Is Transforming Medical Devices
How the Internet of Things Is Transforming Medical DevicesCognizant
 
Where to get primary health information
Where to get primary health informationWhere to get primary health information
Where to get primary health informationthomas654564
 
Greater Interoperability in Healthcare 2022: Data & Technology
Greater Interoperability in Healthcare 2022: Data & TechnologyGreater Interoperability in Healthcare 2022: Data & Technology
Greater Interoperability in Healthcare 2022: Data & TechnologyInferscience
 
What are the major challenges for managing health care information t.pdf
What are the major challenges for managing health care information t.pdfWhat are the major challenges for managing health care information t.pdf
What are the major challenges for managing health care information t.pdffsenterprises
 

Semelhante a Healthcare Small Business (20)

16072-EMC-HealthcareIDC-eBook-1.27
16072-EMC-HealthcareIDC-eBook-1.2716072-EMC-HealthcareIDC-eBook-1.27
16072-EMC-HealthcareIDC-eBook-1.27
 
16072 emc-healthcare idc-ebook-1.27
16072 emc-healthcare idc-ebook-1.2716072 emc-healthcare idc-ebook-1.27
16072 emc-healthcare idc-ebook-1.27
 
Call for Action Enabling Healthcare Reform Using Information Technology
Call for Action Enabling Healthcare Reform Using Information TechnologyCall for Action Enabling Healthcare Reform Using Information Technology
Call for Action Enabling Healthcare Reform Using Information Technology
 
Hit Primary Care July07
Hit Primary Care July07Hit Primary Care July07
Hit Primary Care July07
 
Healthcare intel it 443835 443835
Healthcare intel it 443835 443835Healthcare intel it 443835 443835
Healthcare intel it 443835 443835
 
U.S. Healthcare - Converting Vision to Reality
U.S. Healthcare - Converting Vision to RealityU.S. Healthcare - Converting Vision to Reality
U.S. Healthcare - Converting Vision to Reality
 
A Roadmap for Optimizing Clinical Decision Support
A Roadmap for Optimizing Clinical Decision SupportA Roadmap for Optimizing Clinical Decision Support
A Roadmap for Optimizing Clinical Decision Support
 
It in health care
It in health careIt in health care
It in health care
 
It in health care
It in health careIt in health care
It in health care
 
اینترنت اشیاء در حوزه سلامت
اینترنت اشیاء در حوزه سلامت اینترنت اشیاء در حوزه سلامت
اینترنت اشیاء در حوزه سلامت
 
Practical guide on private funding for EU eHealth SMEs
Practical guide on private funding for EU eHealth SMEsPractical guide on private funding for EU eHealth SMEs
Practical guide on private funding for EU eHealth SMEs
 
Digital Health in the UK: An industry study for the Office of Life Sciences
Digital Health in the UK: An industry study for the Office of Life SciencesDigital Health in the UK: An industry study for the Office of Life Sciences
Digital Health in the UK: An industry study for the Office of Life Sciences
 
Final Federal IT Health Plan
Final Federal IT Health PlanFinal Federal IT Health Plan
Final Federal IT Health Plan
 
Connected Care: Technology-Enabled Care at Home
Connected Care: Technology-Enabled Care at HomeConnected Care: Technology-Enabled Care at Home
Connected Care: Technology-Enabled Care at Home
 
Webinar: Overcoming it challenges
Webinar: Overcoming it challengesWebinar: Overcoming it challenges
Webinar: Overcoming it challenges
 
Where to get primary health information
Where to get primary health informationWhere to get primary health information
Where to get primary health information
 
How the Internet of Things Is Transforming Medical Devices
How the Internet of Things Is Transforming Medical DevicesHow the Internet of Things Is Transforming Medical Devices
How the Internet of Things Is Transforming Medical Devices
 
Where to get primary health information
Where to get primary health informationWhere to get primary health information
Where to get primary health information
 
Greater Interoperability in Healthcare 2022: Data & Technology
Greater Interoperability in Healthcare 2022: Data & TechnologyGreater Interoperability in Healthcare 2022: Data & Technology
Greater Interoperability in Healthcare 2022: Data & Technology
 
What are the major challenges for managing health care information t.pdf
What are the major challenges for managing health care information t.pdfWhat are the major challenges for managing health care information t.pdf
What are the major challenges for managing health care information t.pdf
 

Mais de Wirehead Technology

Whospoppin Healthcare App Presentation
Whospoppin Healthcare App PresentationWhospoppin Healthcare App Presentation
Whospoppin Healthcare App PresentationWirehead Technology
 
Smart machines IBM’s watson and the era of cognitive computing
Smart machines IBM’s watson and the era of cognitive computingSmart machines IBM’s watson and the era of cognitive computing
Smart machines IBM’s watson and the era of cognitive computingWirehead Technology
 
IBM Healthcare 2015 White Paper
IBM Healthcare 2015 White Paper IBM Healthcare 2015 White Paper
IBM Healthcare 2015 White Paper Wirehead Technology
 
Getting A Better Grip on Mobile Devices
Getting A Better Grip on Mobile DevicesGetting A Better Grip on Mobile Devices
Getting A Better Grip on Mobile DevicesWirehead Technology
 
IBM Mobile First Enterprise Report
IBM Mobile First Enterprise ReportIBM Mobile First Enterprise Report
IBM Mobile First Enterprise ReportWirehead Technology
 
Consumer ED ILHIE Toolkit for Professionals
Consumer ED ILHIE Toolkit for ProfessionalsConsumer ED ILHIE Toolkit for Professionals
Consumer ED ILHIE Toolkit for ProfessionalsWirehead Technology
 
Consumer ED ILHIE toolkit for consumers
Consumer ED ILHIE toolkit for consumersConsumer ED ILHIE toolkit for consumers
Consumer ED ILHIE toolkit for consumersWirehead Technology
 
What Illinois Healthcare Law Will Mean To Your Business
What Illinois Healthcare Law Will Mean To Your BusinessWhat Illinois Healthcare Law Will Mean To Your Business
What Illinois Healthcare Law Will Mean To Your BusinessWirehead Technology
 
Social business advent of a new age
Social business advent of a new ageSocial business advent of a new age
Social business advent of a new ageWirehead Technology
 

Mais de Wirehead Technology (20)

Future of Retail
Future of RetailFuture of Retail
Future of Retail
 
Whospoppin Healthcare App Presentation
Whospoppin Healthcare App PresentationWhospoppin Healthcare App Presentation
Whospoppin Healthcare App Presentation
 
Smart machines IBM’s watson and the era of cognitive computing
Smart machines IBM’s watson and the era of cognitive computingSmart machines IBM’s watson and the era of cognitive computing
Smart machines IBM’s watson and the era of cognitive computing
 
IBM Healthcare 2015 White Paper
IBM Healthcare 2015 White Paper IBM Healthcare 2015 White Paper
IBM Healthcare 2015 White Paper
 
Getting A Better Grip on Mobile Devices
Getting A Better Grip on Mobile DevicesGetting A Better Grip on Mobile Devices
Getting A Better Grip on Mobile Devices
 
IBM Mobile First Enterprise Report
IBM Mobile First Enterprise ReportIBM Mobile First Enterprise Report
IBM Mobile First Enterprise Report
 
HP Whitepaper BYOD in Healthcare
HP Whitepaper BYOD in Healthcare HP Whitepaper BYOD in Healthcare
HP Whitepaper BYOD in Healthcare
 
Consumer ED ILHIE Toolkit for Professionals
Consumer ED ILHIE Toolkit for ProfessionalsConsumer ED ILHIE Toolkit for Professionals
Consumer ED ILHIE Toolkit for Professionals
 
Consumer ED ILHIE toolkit for consumers
Consumer ED ILHIE toolkit for consumersConsumer ED ILHIE toolkit for consumers
Consumer ED ILHIE toolkit for consumers
 
What Illinois Healthcare Law Will Mean To Your Business
What Illinois Healthcare Law Will Mean To Your BusinessWhat Illinois Healthcare Law Will Mean To Your Business
What Illinois Healthcare Law Will Mean To Your Business
 
HIPAA Basic Healthcare Guide
HIPAA Basic Healthcare GuideHIPAA Basic Healthcare Guide
HIPAA Basic Healthcare Guide
 
IBM Collective intelligence
IBM Collective intelligenceIBM Collective intelligence
IBM Collective intelligence
 
IBM Becoming a Social Business
IBM Becoming a Social BusinessIBM Becoming a Social Business
IBM Becoming a Social Business
 
IBM Social Business Behavior
IBM Social Business BehaviorIBM Social Business Behavior
IBM Social Business Behavior
 
Social business advent of a new age
Social business advent of a new ageSocial business advent of a new age
Social business advent of a new age
 
Ibmsocial
IbmsocialIbmsocial
Ibmsocial
 
Case study
Case studyCase study
Case study
 
Healthcarearticle
HealthcarearticleHealthcarearticle
Healthcarearticle
 
Healthcare IT Managed Services
Healthcare IT Managed ServicesHealthcare IT Managed Services
Healthcare IT Managed Services
 
Health information exchanges
Health information exchangesHealth information exchanges
Health information exchanges
 

Healthcare Small Business

  • 1. WHITE PAPER Health IT Deployment: The Essential Role of Small IT Solution Providers www.comptia.org
  • 2. 2 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Contents executive summary 3 Part 1: HealtH it and small Business 4 aBout comptia 4 Part 2: Policy and regulatory landscaPe 5 THE HITECH ACT AnD THE STRATEgIC PlAn 5 SmAll mEDICAl PRovIDERS 6 RolE of IT CommunITy, BARRIERS 7 Part 3: education 8 Part 4: tecHnical assistance 10 Part 5: Privacy and security 11 BuSInESS ASSoCIATE RulE 11 STATE STAnDARDS 12 Part 6: conclusion 13 www.comptia.org
  • 3. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 3 exeCutive summary The health IT transition is a vital step toward improving the quality of care and overall health of patients throughout the united States. Several key legislative efforts have established policies seeking to advance the transition among medical providers. Trends, however, indicate that small medical providers are slow to adopt health IT due to a range of concerns about their ability to navigate complex technologies and the impacts it could have on their practices. At the same time, small IT solution providers have the expertise to be a meaningful partner in the transition, but current policies have restricted their ability to enter the health IT market on a large scale. Several minor changes to existing policy would make great strides towards bringing small IT solution providers into the fold to help advance the transition and remove some of the burden from small medical providers. This paper outlines recommendations within three distinct policy areas: education, technical assistance, and privacy and security. Health IT has the ability to increase the quality of care to patients and usher in significant economic benefits for small businesses across the nation. However, for health IT to be a success, federal policies must understand the important link between small medical providers and small IT solution providers. Policies that foster a partnership between these small businesses will not only allow medical providers to focus on patients, but will also help to grow the economy and keep the u.S. IT industry competitive within a $3 trillion global IT market.
  • 4. 4 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 1: HealtH it and small Business Health information technology (IT) deployment is a vital national priority that has the capability to increase the quality and efficiency of healthcare in the united States, while reducing the overall long- term costs associated with antiquated record keeping and other applications. from eliminating the need for duplicative medical tests to providing healthcare professionals with instant access to patient information, health IT is a key component of modernizing our healthcare systems. Health IT also has the ability to transform our nation’s evolving economy. As Secretary Sebelius noted, “we believe in health information technology Wider adoption of health it has the potential to because it’s an investment in a stronger economy.”1 Two studies, one by generate both internal and external savings: the RAnD Corporation and one by the Center for Information Technology leadership, report estimates of the potential net benefits that could • Internal savings are those that can be captured arise nationwide if all providers and hospitals adopted health information by the provider or hospital that purchases the technology. Both studies estimated annual net savings to the health care system; they are most likely to be in the form sector of about $80 billion, relative to total spending for health care of of reductions in the cost of providing health about $2 trillion per year.2 care—that is, improvements in the efficiency In order to achieve the dual benefits of healthcare optimization and with which providers and hospitals deliver care. economic growth, health IT should be implemented in a manner that allows medical providers to continue to focus on patient care and not be • External savings are those that the provider distracted with complex and expensive new requirements. The IT industry or hospital that purchases the system cannot should be a partner in this process in order to provide a seamless health realize but that accrue to another such provider IT transition, while removing the burden from medical providers. This or perhaps the relevant health insurance partnership will not only allow for more widespread adoption of health IT plan or even the patient. Such savings might among small medical providers, but will also allow healthcare providers arise, for example, from the newfound ability to continue their focus on patients and avoid dedicating staff to new of participants in the health care sector to information technology systems. exchange information more efficiently. As part of a $3 trillion global industry, IT sector employment in the u.S. Source: Congressional Budget Office, Evidence on the Costs and could benefit from healthcare growth in the form of a higher volume Benefits of Health Information Technology of work and in newly created positions. According to the Bureau of labor Statistics, employment of medical records and health information technicians is expected to increase by 20 percent, much faster than the average for all occupations through 2018. great benefits exist for both our healthcare and the economy by effectively integrating the IT community into the health IT transition. aBout Comptia The Computing Technology Industry Association (CompTIA) is a non-profit trade association representing the IT industry. CompTIA represents over 2,000 IT companies. our members are at the forefront of innovation and provide a critical backbone that supports broader commerce and job creation. These members include computer hardware manufacturers, software developers, technology distributors, and IT specialists that help organizations integrate and use technology products and services. CompTIA is dedicated to serving its membership by advancing industry innovation and growth through its educational programs, market research, networking events, and public policy advocacy. 1 Secretary Sebelius Remarks, HIMSS Convention, February 23, 2011. 2 Congressional Budget Office, Evidence on the Costs and Benefits of Health Information Technology: www.cbo.gov/ftpdocs/91xx/doc9168/05-20-HealthIT.pdf. www.comptia.org
  • 5. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 5 CompTIA is also the leading global provider of vendor neutral IT certifications to validate skills in the workplace. over 1.5 million individuals hold one of our certifications, with the vast majority having completed one of our foundational certifications, A+, Security+, and network+. The development and dissemination of these certifications serve the industry by adding to the level of knowledge and professionalization of the IT solution provider. In turn, this allows the IT solution provider to be an ambassador for the IT industry, bringing to its client a voice of technical knowledge and support. CompTIA offers its members and the industry at large numerous training and credential programs to help them enter the health IT market, among other IT verticals. The CompTIA Healthcare IT Technician certificate covers the knowledge and skills required to implement, deploy, and support health IT systems in various clinical settings. The exam covers regulatory requirements, organizational behavior, IT operations, medical business operations and security. The exam is intended for IT professionals who are CompTIA A+ certified or have 500 hours of hands-on IT technical experience in the lab or field, plus the knowledge/skills necessary to deploy and support health IT systems. on the business side, CompTIA offers a suite of training courses and educational tools to help IT companies maintain best practices when developing and implementing IT solutions for healthcare offices and hospitals. Part 2: PoliCy and regulatory landsCaPe The HITECH Act and the Strategic Plan The Health Information Technology for Economic and Clinical Health (HITECH) Act was signed into law as part of the American Recovery and Reinvestment Act in 2009. The legislation makes significant progress in providing incentives for early adoption of Electronic Health Records (EHRs) through incentive payments for What is “Meaningful Use”? achieving the “meaningful use of electronic The American Recovery and Reinvestment Act health records” standard, which are later of 2009 specifies three main components of replaced by penalties for noncompliance. Meaningful Use: Achieving the “meaningful use” standard 1. The use of a certified EHR in a meaningful adds an additional layer of concern for manner, such as e-prescribing. medical providers as the path to reaching 2. The use of certified EHR technology for “meaningful use” remains unclear to many electronic exchange of health information to small medical providers. The legislation improve quality of health care. also codifies the office of national 3. The use of certified EHR technology to submit Coordinator for Health Information clinical quality and other measures. Technology (onCHIT), expands the requirements of the Health Insurance According to the Centers for Medicare & Medicaid Services, “meaningful use” means providers need Portability and Accountability Act (HIPAA), to show they’re using certified EHR technology in and provides several funding opportunities ways that can be measured significantly in quality to assist in the transition. and in quantity.
  • 6. 6 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Recently, the office of national Coordinator (onC) released the “federal Healthcare IT Strategic Plan: 2011-2015,” which outlined five general goals: • Achieve adoption and information exchange through meaningful use of healthcare IT. • Improve care, improve population health, and reduce healthcare costs through use of healthcare IT. • Inspire confidence and trust in healthcare IT. • Empower individuals with healthcare IT to improve their health and the healthcare system. • Achieve rapid learning and technological advancement. Thus far, the federal government has taken significant steps towards achieving these goals; however participation by small and medium sized medical providers has not achieved full potential. In order to realize better health outcomes, a more efficient delivery of medical services, and a satisfied patient base, it is important that more small medical providers participate and that IT solution providers be made a partner in achieving these goals. • Achieve adoption and information exchange through meaningful use of healthcare IT. • Improve care, improve population health, and reduce healthcare costs through use of healthcare IT. • Inspire confidence and trust in healthcare IT. • Empower individuals with healthcare IT to improve their health and the healthcare system. • Achieve rapid learning and technological advancement. Small Medical Providers Early trends indicate that small medical practices are less likely to transition to electronic medical records, despite incentives provided within the HITECH Act. According to the office of national Coordinator, only 41% of small medical providers will be compliant with digital health record records by 2014. In many cases, small medical providers are concerned about the lack of staff resources they have to dedicate to a health IT system. According to farzad mastashari, national Coordinator, small medical providers “often lack staff with IT training and don’t have the background or Reasons for Not yet Adopting EMR the time to do it themselves.” 3 Not a Minor Major Factor Factor Factor There continues to be a concern that implementing Upfront costs of EMR 7% 18% 75% health IT in small practices will become the responsibility Ongoing operational costs of EMR 8% 29% 64% of medical staff and, ultimately, take them away from their primary focus. At a recent Congressional hearing, Impact on existing work flow or processes 14% 27% 59% a small medical provider highlighted this concern by Training and user adoption issues 12% 38% 50% stating, “I fear the effect it may have on my practice in terms of the disruption of care that I can provide Interoperability or technology standards issues 16% 42% 41% to my patients during the procurement of hardware and software, converting patient records, learning and Data security/privacy 19% 43% 39% implementing the system as a practitioner, and training Decision driven by parent hospital 38% 29% 33% staff. And while I certainly understand that an EmR system would benefit patients, will it require more—or Don’t think it will improve patient care 25% 44% 31% less—physician and staff time, and will it ultimately be Existing EMR Technology not 34% 44% 31% beneficial to my practice?”4 good enough Source: CompTIA 2nd Annual Healthcare IT Market: Insights and Opportunities study 3 Farzad Mastashari, Testimony before the House Small Business Subcommittee on Healthcare and Technology, June 2, 2011. 4 Denise Lea Elliott, Testimony before the House Small Business Subcommittee on Healthcare and Technology, June 2, 2011. www.comptia.org
  • 7. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 7 While the HITECH Act is an important framework for advancing health IT, the legislation does not promote the significant role the IT community, particularly IT solution providers, should play in the transition to electronic medical records, especially for small medical providers. As HHS Secretary Sebelius noted in a recent speech, “switching from paper to electronic records is never easy. But it is a lot harder for the small practice with limited staff and resources than it is for the major hospital with a trained IT team and a big budget for capital improvements.”5 The IT industry has the ability to help fill the health IT void among small medical providers and reverse the current trend away from implementation. However, small IT providers have significant barriers to participating in the health IT transition. Role of IT Community, Barriers Current estimates are that the unites States will need 50,000 more health IT workers to help medical providers achieve meaningful Small Medical use of electronic medical records.6 yet, the Providers IT industry has a long track record of growth and is uniquely positioned to fill this void— particularly among small and medium-sized IT firms. According to a 2010 Small Business Administration report, small firms accounted Federal Small IT for 65% (or 9.8 million) of the 15 million net Government Providers new jobs created between 1993 and 2009. furthermore, small businesses hire 40 percent of high tech workers (such as scientists, engineers, and computer programmers).7 While the IT solution provider could play a significant role helping small medical providers overcome the challenges of implementing health IT, a variety of barriers exist that have prevented IT solution providers from entering the market in meaningful numbers. In general, the HITECH Act and the strategy presented by the onC both have a significant focus on the medical provider, yet do not mention the role IT solution providers could play in a successful transition. Therefore, the entire burden has been placed on the medical providers themselves, without a focus on partnering with IT solution providers. There are also specific barriers preventing small and medium sized IT businesses from helping achieve the healthcare and economic potential, such as: • A lack of resources for retraining IT professionals, • fully integrating IT professionals in the assistance provided by the Regional Extension Centers, and, • Data breach provisions that place unfair burdens on IT professionals. While these barriers could significantly limit entry for IT professionals and, therefore, limit the success of the health IT transition for small medical providers, there are opportunities to overcome these barriers. We explore each of these areas below. 5 Secretary Sebelius Remarks, HIMSS Convention, February 23, 2011. 6 EHR Institute: www.ehrinstitute.org/ehrhow/group-blog.blog/2010/09/08/Additional-50-000-Health-IT-Workers-Needed-to-Impl. 7 Small Business Administration, Frequently Asked Questions: web.sba.gov/faqs/faqIndexAll.cfm?areaid=24.
  • 8. 8 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 3: eduCation PoliCy reCommendation > Provide support and resources toward retraining current it professionals in health it specialties. Current situation The current economic slowdown is having a profound effect on the labor market as workers shift to adapt to new realities. As Secretary of labor Hilda Solis noted, “As the economy recovers, the labor market will continue to evolve. To remain competitive, we need to ensure that industry has the labor it needs to innovate and expand, and that displaced workers have the skills to compete for these new jobs.” Health care-sector jobs have continued to grow throughout this recession, and this growth is expected to continue as the American population ages.8 The Bureau of labor Statistics estimates that medical records and health information technicians held about 172,500 jobs in 2008. Jobs are expected to grow by 20%, or about 35,100 new jobs, for the decade 2008-2018. The office of national Coordinator estimates that 50,000 IT workers will be needed to meet the EHR requirements of “meaningful use.” To meet this need, there has been a significant focus on recruitment of new individuals trained in health IT at the college and university level through scholarships and grants made available by the American Recovery and Reinvestment Act. CompTIA very much supports this focus as demonstrated by our deep commitment to, and active participation with, the midwest HIT Regional College Consortium and to the HHS/Dol Career Clusters effort. However, from our experience, more attention and resources need to be provided to training existing IT professionals who already have basic IT skills but who need additional help in adding a health IT “bolt-on” to their considerable knowledge and experience in IT. many of these professionals will go through private training centers and/or will audit courses at their local community college or university, and then take a certification test to validate those skills allowing them to more rapidly become conversant in health IT. This summer, CompTIA launched its own healthcare IT technician certificate, a vendor- and technology-neutral credential that validates the operational, regulatory and security knowledge necessary to provide hardware and software support in medical environments where EHR systems are used. oCCuPational ProjeCtions data: mediCal reCords and HealtH information teCHniCians employment employment Change Job openings due to growth and (2008-19) replacement needs 2008 2018 numBer PerCent 2008-2018 172,500 207,600 35,100 20.3 70,300 Source: U.S. Bureau of Labor Statistics Typical coursework in health information technology includes medical terminology, anatomy and physiology, health data requirements and standards, clinical classification and coding systems, data analysis, healthcare reimbursement methods, database security and management, and quality improvement methods.9 While bringing new people into the profession is important, the existing IT community must not be forgotten and, indeed, should be leveraged more effectively as we work to 8 Politico: www.politico.com/news/stories/0710/40195.html. 9 U.S. Bureau of Labor Statistics: www.bls.gov/oco/ocos103.htm. www.comptia.org
  • 9. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 9 draw current IT professionals into new careers. These men and women can be activated very rapidly to help with the transition toward health IT, but they need some economic assistance to offset some of the costs of this sizeable investment. solution Provider Hit training needs Hit training needs Very Critical somewhat Not Critical need Critical Need Compliance/regulatory mandates (HIPAA) 45% 36% 20% Healthcare workflow processes 42% 43% 15% Software applications such as EMR 41% 40% 18% How to access federal stimulus funds 39% 45% 17% Business strategies for entering a new market 37% 47% 16% sales training 31% 47% 22% Source: CompTIA’s 2nd Annual Healthcare IT Market: Insights and Opportunities study oPPortunity President Barack obama said that “one thing government can do is partner with the private sector to make sure that every worker has the necessary skills for the jobs they’re applying for.”10 Policies such as an HIT education tax credit or direct lending to offset education and other costs would provide valuable resources to allow workers with IT knowledge to shift their focus to the growing health IT sector, allowing tens of thousands of IT workers to take advantage of the national push for the benefits surrounding EmRs. However, we understand the fiscal pressures that are having a profound impact across federal budgets and initiatives. Because of that, we recommend adapting existing tax credit programs to help retrain current IT professionals and then phase credits out over time. In particular, we encourage policymakers to amend the lifetime learning Credit and Business Education Tax Deduction so that individuals and IT solution providers could offset some of the expense of earning appropriate certifications and skills for the HIT marketplace. These initiatives can provide the necessary incentive to defray the costs for business owners, while ensuring that the workforce is capable of handling the challenge ahead. further, we recommend that capital support for small IT businesses should be provided by re-allocating funds from existing programs designed to assist small businesses, such as the Small Business lending fund. While a total of $30 billion has been allocated to the Small Business lending fund, at this point, applications for only $12 billion has been received. Accordingly, we recommend undistributed funds be redirected to address these HIT funding needs. 10 Wall Street Journal: online.wsj.com/article SB10001424052702304259304576379142910970126.html.
  • 10. 10 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers Part 4: teCHniCal assistanCe PoliCy reCommendation > ensure that regional extension centers (recs) work to educate and integrate small it firms into the health it transition. Current situation The office of national Coordinator has used $677 million to fund 62 Regional Extension Centers throughout the nation. According to the onC, the goals of the RECs “include outreach and education, EHR support (e.g., working with vendors, helping choose a certified EHR system), and technical assistance in implementing health IT and using it in a meaningful way to improve care.”11 The RECs have the ability to greatly impact the EHR transition, especially among small medical providers. According to David Blumenthal, the former national Coordinator, “conversion from paper to electronic health records is a challenging task for any provider, and we believe that help from the RECs will make an important difference, especially in assisting doctors in smaller practices and the smaller and rural hospitals.”12 The outreach and technical assistance RECs could provide should not only increase participation, but reduce costs for the providers. In order to best serve medical providers and encourage greater participation, RECs should universally expand their focus to everyone that plays a role in the transition and not limit their focus to medical providers—many of which will outsource their IT work to a third party. Small IT solution providers can play a significant role in helping small medical providers with the transition to EHRs; however, RECs greatly vary in their approach to small IT firms. In some cases, RECs are doing very little to establish a connection between small IT firms and small medical providers, which leaves small medical providers without a vital component of a successful EHR transition. While most RECs identify themselves as vendor neutral, many have preferred vendor lists that vary significantly in terms of preferred vendors and overall structure. Additionally, REC websites vary significantly, which reduces their ability to advance their outreach goals. In most cases, they provide little information for IT professionals that could be carrying out the transition and focus entirely on the medical providers, which remain hesitant to move forward. The absence of a universal commitment by the RECs to integrate small IT firms into the transition will not only impact the ability of small medical providers to participate in the transition, but will also limit their ability to focus on patient care. 11 Office of National Coordinator: healthit.hhs.gov/portal/server.pt/community/facts_at_a_glance/1835/home/17870. 12 David Blumenthal: www.regionalextensioncenters.com. www.comptia.org
  • 11. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 11 oPPortunity CompTIA strongly supports the concept of Regional Extension Centers that will assist in the EHR transition, especially for small medical providers that continue to struggle without clear direction. It is important, however, that the RECs have a uniform process that facilitates communication and outreach to all parties involved in the transition. While some RECs are already effectively doing this, it is important to ensure that RECs across the nation are providing uniform services to best reach the goal of a successful EHR transition. RECs should have a list of local solution providers that are readily available to medical providers. These lists should be neutral and provide a diverse menu of local options to assist with the EHR transition. RECs should also offer guidance and training to IT solution providers on “meaningful use,” data breach, and notification standards. Additionally, the RECs should actively work to partner medical providers with IT solution providers and resist attempting to serve as the IT solution provider themselves. In some cases, RECs are establishing venues (similar to job fairs) that would connect these two vital components of the EHR transition, which is a model that should be used throughout the country. CompTIA is working to make sure IT companies are well-versed in the specific IT needs of healthcare providers, and has created a suite of training courses and educational tools to that end. PART 5: PRIVACy ANd SECURITy PoliCy reCommendation > amend the Business associate rule. > enact federal preemption for data breach standards and notification requirements, including elimination of private rights of action. Current situation In general, CompTIA applauds the efforts made under the HITECH Act to raise privacy standards for personal health information (PHI). Consumer and medical trust in health IT will only come to pass if there is strong respect for, and protection and enforcement of, personal health information. With that said, there are a series of notable provisions that will present substantial burden on the small IT solution provider that could severely restrict entry and competition in the HIT space. Business Associate Rule under the HITECH Act, business associates and subcontractors of the covered entities are now directly liable under HIPAA for complying with the security and privacy rules. originally, the HIPAA Security Rule required a covered entity to maintain administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of all PHI the covered entity
  • 12. 12 White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers creates, receives, maintains, or transmits. However, the HITECH Act extended the application of the HIPAA Security Rule’s provisions on administrative, physical, and technical safeguards and documentation requirements to business associates of covered entities, making those business associates subject to civil and criminal liability for violations of the HIPAA Security Rule. This change represents a departure from HIPAA where the liability for business associates was based on the applicable business associate contract with the covered entity. This means that a small IT solution provider can now be exposed to criminal penalties and civil fines that can range up to $1.5 million—a crushing amount for a business with 20 employees or less. state standards Today, over 45 states have data breach notification requirement laws on the books with varying requirements and standards. When the HITECH Act was enacted, the new law specifically allowed states to maintain their individual data notification laws, so long as the state laws did not provide less protection than the HIPAA Privacy Rule. Because of this, states were authorized with few limitations under the HITECH Act to create new requirements that impose additional limitations on the use and disclosure of protected health information, including adding new parameters on how data breach notifications must be managed. This interplay between state and federal standards can be a source of great confusion to a small business in the HIT space. for example, under the HITECH Act a data breach notification must be provided within 60 days of a breach, but in states like massachusetts, a notice of data breach must be provided within 45 days. Even more complicating, under the business associate rule, the notice requirement is triggered if a vendor knows, or “should have known” that a breach occurred had the vendor undertaken “reasonable diligence.” yet the massachusetts data breach law requires a vendor to provide notice when it “knows or has reason to know of a breach of security.” 13 These variances can cause small IT solution providers millions did you Know? of dollars in aggregated compliance and legal costs. The Poneman Institute recently calculated that furthermore, because the HITECH Act does not preempt state data the average cost of a data breach is $204 per breach notification laws that are more stringent, small IT solution compromised customer or patient record. This providers remain exposed to civil litigation through private rights of action. Currently, over ten states maintain data breach notification includes $144 in indirect costs and $60 in direct laws with private right of action provisions, subjecting small businesses costs. The cost per record of a data breach to significant legal exposure and risk. for example, any resident of involving a laptop computer or other mobile California can file a civil action under the state’s data breach notification device is $225. These costs result from a complex law, which includes data breaches of medical health information. The web of competing and conflicting state data costs associated with defending a civil lawsuit, regardless of merit, can be devastating to a small IT solution provider and pose a significant breach laws for protected medical information. barrier to entry. Source: For the Record: To be clear, CompTIA believes that there should be strong and robust www.fortherecordmag.com/archives/013111p14.shtml protections for the management, storage, and transmission of protected medical health data. However, when states are allowed to implement their own patchwork requirements, the results often pose a significant barrier affecting consumers, medical practices, and IT firms. 13 Commonwealth of MA: www.malegislature.gov/Laws/GeneralLaws/PartI/TitleXV/Chapter93H/Section3. www.comptia.org
  • 13. White PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers 13 oPPortunity CompTIA strongly believes that there must be robust protection and enforcement of personal health information. only by ensuring significant security precautions will we as a nation be able to usher in the opportunity surrounding health IT, from both a medical delivery and economic standpoint. modifications to the provisions noted above can ensure significant protection of PHI while fostering a competitive and open environment for small to medium sized health IT solution providers. Specifically, CompTIA believes that the HITECH Act should be revised to serve not just as the floor, but also as the ceiling for data notification requirements. CompTIA has long supported federal preemption for data breach standards and notification, and the evolution of HIPAA under the HITECH Act makes this an even more integral change for small HIT providers. one consistent law across the country with an agreed upon definition of a breach and notification time period, as well as elimination of private rights of action, could save small and medium size IT solution providers millions of dollars in reduced compliance and legal costs associated with data breach notification requirements. Such an approach would eliminate uncertainty and confusion as to what the obligation of a business would be in the event of a data breach. CompTIA also supports the HIPAA liability model in place prior to the enactment of the HITECH Act. under the HIPAA Privacy and Security Rules, business associates and related third parties had a contractual obligation to certify that an IT firm met the HIPAA privacy and security obligations. These certifications created a competitive incentive for IT firms to offer the highest standard of privacy and security compliance. Instead, the new framework of fines serves as a disincentive to new entrants that would otherwise offer competent IT services. PART 6: CONClUSION Small IT solution providers are well positioned to play a significant role in the health IT transition as a result of their expertise and unique skill set. given that the overall goal of health IT is to increase the quality of care and improve patient health, federal policies should allow medical providers to focus on patients and open the door for IT solution providers to focus on making the transition as efficient and effective and possible. A strong partnership between the federal government, medical providers, and the IT industry is critical to ensure a successful future for patient health as well as ensure strong economic benefits as a result of this transition. However, many federal programs and policies seeking to advance health IT and encourage broad support have left small IT solution providers on the sidelines, placing medical providers at a disadvantage and significantly burdening market entry for a vital component to our nation’s IT industry.
  • 14. 14 WHite PaPer: Health IT Deployment: The Essential Role of Small IT Solution Providers federal policies should reflect the important role small IT solution providers can play in the health IT transition and create avenues for them to fully participate. Doing so will help to expand adoption by medical providers and increase the quality of care to patients. Participation by small IT providers will also help drive job creation and retention, keeping America’s small business backbone as an economic engine for generations to come. Health IT has significant potential and opportunity. CompTIA and its member companies look forward to continued engagement and dialogue with policymakers to ensure that health IT is successful and that patients, small business, and our economy all see a healthier future. www.comptia.org
  • 15.
  • 16. www.comptia.org CompTIA Worldwide Headquarters CompTIA member Services, llC 3500 lacey Road, Suite 100, Downers grove, Illinois 60515 630.678.8300 www.comptia.org © 2011 CompTIA Properties, llC, used under license by CompTIA member Services, llC. All rights reserved. All membership activities and offerings to members of CompTIA, Inc. are operated exclusively by CompTIA member Services, llC. CompTIA is a registered trademark of CompTIA Properties, llC in the u.S. and internationally. other brands and company names mentioned herein may be trademarks or service marks of CompTIA Properties, llC or of their respective owners. Reproduction or dissemination prohibi- ted without written consent of CompTIA Properties, llC. Printed in the u.S. July 2011 1617-uS 16