An electronic health information system must meet federally mandated requirements. This means that the system must have the technology necessary to meet the protections needed for the protected health information that it will have access to. These protections will help to enforce the HIPAA privacy and security rules.
The technology needed for the protection of privacy would include limiting who can access information. Facilities can help this process by creating specific policies regarding use of and access to protected health information. They can also provide education to employees regarding the use and disclosure of protected health information. Technology can help the system by having unique user names and strong password requirements to help inhibit unauthorized access to records. There will also be a built in time out feature that would log out a user after a period of inactivity. There must be an active firewall in place to prevent malicious adware or viruses from entering the system.
Another technology requirement will be Computerized physician order entry will be available within the new system. This will help prevent errors related to misinterpretation. CPOE also has features that guide order entry, such as dosing guides and allergy warnings. The system must have capabilities of managing a medication list and the ability to electronically prescribe medications directly to the patient’s pharmacy.
The HITECH act requires that the system have the capability necessary to record, store and track health information. This will help enable the tracking of certain disease trends. The system must have the capability for data grouping that will allow for easy data mining.
The system and organization must have an adequate storage and back up that is performed continually to prevent any loss of information. There must be a policy in place for an emergency situation that allows staff to have access to medical records as necessary....