Guest Column | July 17, 2018

Expedite The Migration To Value-Based Care With Simple And Secure File-Sharing

By Marianna Prodan, Director of Healthcare Solutions, Accellion

Ease Patient Sharing Information

Value-based care goes beyond reducing or eliminating unnecessary tests, drugs, and procedures. Healthcare IT professionals contribute to value-based care initiatives when they strike a balance between efficient and secure file sharing of patient records. Simple file sharing means patient records are easily accessed and transferred between specialists and facilities whereas secure file sharing indicates patient records are transferred in a manner that protects patient privacy and demonstrates compliance with HIPAA and HITECH.

When a New York state resident breaks her leg while vacationing in Florida, local healthcare providers need access to her medical records to ensure she receives prompt and effective treatment. This is more easily said than done. Reuters reports that less than one in three U.S. hospitals can find, send, and receive electronic medical records for patients who receive care somewhere else.

The crux of the problem lies in the disparate IT systems that store patient records and the resulting interoperability challenges. Consider this: the majority of the more than 600 EMR/EHR systems in use today do not share a common data format. Without access to the entirety of a patient’s records, doctors will reorder tests that have already been conducted somewhere else, or make treatment decisions unaware of a patient’s allergies or other underlying medical conditions.

File sharing technology has improved in recent years to dramatically enhance the efficient exchange of information. First, efficient file sharing provides a single interface to multiple repositories, for example EMR/EHR, ECM, ERP, and other systems, significantly increasing efficiency as it pertains to finding and accessing patient records. Streamlined file access enhances value-based care and helps healthcare organizations comply with the portability requirements in GDPR. If the patient in the above scenario hails from Germany rather than New York, under GDPR she has the right to ask for – and receive in a timely manner – every record the Florida facility generates through her patient journey. If a healthcare facility classifies specific files that contain confidential information and separates them from files that don’t, files are more easily located and exchanged.

Second, the closer a file sharing system resembles email in form and function, the more likely staff will adopt and use the solution. Other file sharing mechanisms like faxing or burning and shipping DVDs significantly lag email in convenience. These methods also lack critical security capabilities that jeopardize patient privacy and fail to meet HIPAA requirements for protecting PHI. While FTP is a more secure method of sharing PHI, it too lacks convenience as IT professionals must set up and administer accounts, keeping them from more important responsibilities.

Third, efficient file sharing enables automation. Whether a healthcare provider needs to send an EKG interpretation to a tertiary facility, ten years of patient records to a requesting patient, or patient billing statements to multiple insurance providers, automated file sharing removes time consuming manual processes and reduces risk caused by human error.

While efficient file sharing enhances value-based care, secure file sharing must also be a priority. Ultimately, any file containing PHI must meet HIPAA’s strict compliance and security requirements when it is stored, accessed or shared.

Secure file sharing provides key security capabilities for healthcare providers, including data leak prevention, anti-virus and advanced threat prevention, and encryption of content in transit and at rest. It also mitigates the risk of shadow IT use, namely storing and sending PHI using unsecure devices or systems like Dropbox and Google Drive. Lastly, implementing access controls so only authorized employees can view, edit, download or share confidential information, as well as monitor all file sharing activity, namely who accesses, modifies or shares a file (and with whom) are critical for demonstrating compliance with HIPAA and HITECH.

As more healthcare providers transition to value-based models, physicians and other medical staff must revisit how they share protected health information (PHI). Implementing efficient (and secure) file-sharing technologies and best practices will ensure you reduce costs and provide higher levels of patient care while protecting patient privacy and maintaining compliance with industry regulations.

About The Author

Marianna Prodan is the Director of Healthcare Solutions at Accellion. She is responsible for the Company’s healthcare strategy, including market research, positioning, messaging, content development, sales enablement and lead generation. Marianna has extensive product marketing, marketing and business development experience with technology companies including NextPlane, Cloudplace, and TeliaSonera. She holds an MBA from Cass Business School of the City University of London.