The Hot List — What you read last year
3 Common Misconceptions about Business Associate Agreements: The HIPAA Privacy Rule outlines the types of entities that are covered by HIPAA and entities that have to follow the HIPAA security and privacy rules. The main categories are clearinghouses, covered entities (CEs), and business associates. The further down the line the subcontractor gets from the covered entity, the more confusion there is about who really is a business associate and who needs to sign a business associate agreement. Continue Reading
2017 Healthcare Trends Part 1: The Rise of Patient as Consumer:
There’s often a buzz of recap news stories at the end of each year followed by a flurry of predictions posts for the coming new year. We’ve done this before in a few different ways at Datica. The prediction posts are usually specific and often wrong in that specificity. For 2017 I’m going to do things differently. Over the course of the next few weeks, I’ll present four high-level trends that follow the broad directional shifts driving healthcare in 2017 and beyond. These overarching trends are creating turmoil and uncertainty, new problems across all sectors of the industry, and opportunities for new solutions to help address uncertainty and new problems.
2017 Healthcare Trends Part 3: The Rise and Fall of the EHR:
This 3rd part of the 2017 healthcare trends series looks at problems with EHRs, raising the question of whether their peak value has already passed. Meaningful Use (MU) is dead but it succeeded wildly in increasingly the adoption of EHRs. In fact, MU was so successful that physicians have become the most overtrained and overpriced data entry workers in our economy. All of this data entry has been at the expense of patient care as evidenced by the time and attention given to record keeping and not spending time with patients. To be clear, there are benefits to EHRs in terms of standardizing documenting, analytics, and billing.
Cloudflare, Data Breaches, and the HIPAA Conduit Exemption: By now you’ve likely heard of the CloudFlare parser bug that caused CloudFlare’s CDN network to leak sensitive data across unrelated requests. Depending on who you ask this is either an unfortunate bug, a serious problem, or a historic event.
At Datica we often get asked about how content distribution networks (CDNs) relate to maintaining HIPAA compliance. Are you allowed to use them in a web application? If so, what are the restrictions? What are the issues you have to be wary of? As it turns out there’s a specific part of HIPAA legislation that relates strongly to these questions. Continue Reading
FHIR is no Longer Just a Concept: I recently traveled to Duke University to both attend and present at the 2nd HL7 FHIR Applications Roundtable. This topped my must-attend 2017 events list after I attended the first event last fall in Boston. Here’s what I learned, saw, and enjoyed at the applications roundtable. Continue Reading
SaaS, PaaS, IaaS—What’s the Difference?: In a recent research report, Datica uncovered interesting trends in digital health, including healthcare cloud trends. One of the interesting trends we discovered was that, within healthcare, the definition of cloud is no longer only scoped to SaaS any longer as it had been in the recent past. In fact, healthcare companies are turning to cloud infrastructure services to help manage costs and increasing complexities.
In 2017, 75% of hospital CIOs plan to use IaaS services within the next year — up from just 15.3% in 2014. In light of this trend, we thought it a good time to once again define the three service delivery models prevalent in healthcare companies today. Continue Reading
The Accelerating Migration to the Healthcare Cloud: I saw an article recently titled, “Hospital datacenters: Extinct in 5 years?” that made my jaw drop just a bit. The race to the cloud is unquestionably taking place in just about every other industry. More than half of the CIOs polled at last year’s Gartner Symposium IT Expo are moving away from a captive data center environment and working toward a cloud-first strategy.
The healthcare industry is notoriously the laggard in that migration and, up until now, healthcare’s race to the cloud has looked more like a slow walk. So, five years may be a bit ambitious. Even so, the healthcare cloud migration is gaining steam among hospitals and health systems today. In fact, healthcare cloud spending is expected to rise nearly threefold, from $3.73 billion in 2015 to $9.48 billion by 2020.
In this article, we explore the state of cloud computing in healthcare today, the benefits of cloud computing in the healthcare industry, and HIPAA cloud compliant hosting. Continue Reading
Announcing One-click Installations of Mirth Connect and Open Source Connectors: Today we are launching one-click installations of Mirth Connect combined with Open-Source Connectors. It is the next evolution of how we help solve the problem of healthcare data integration. The switch to a more open solution is a testament to our enduring commitment to helping customers with integration in the best way possible. Healthcare developers can get started on new projects faster, and benefit from three years of learning.
We aim to empower the developer community to solve the problem of integration themselves with tools that are open, reliable, compliant, and secure. The launch is based on consistent feedback that customers need more flexibility, more control over their integration environments, better pricing at scale, and future-proofing for things like FHIR and the Epic App Orchard and Cerner Code. Continue Reading
5 Steps to HITRUST Certification: “If I’m being honest, I’d tell that the process we went through to achieve HITRUST CSF Certification was incredibly painful. It was time consuming and resource intensive beyond our wildest expectations. Personally, as the Datica Privacy Officer and point person for HITRUST, I was taxed beyond anything I expected,” said Dr. Travis Good, Co-founder, CEO, and Chief Privacy Officer of Datica.
Complying with HIPAA and proving it are two different things. Datica is HIPAA compliant. We can point you to the documentation we’ve created to show how we comply with all the various HIPAA rules. But, ultimately, because there is no true HIPAA certification, the only way to prove HIPAA compliance is to go through 3rd party audits as we have at Datica. Our customers leverage those audits to prove the infrastructure they use is HIPAA compliant. Basically, we do all this work to make proving compliance easier for our customers. Continue Reading
Opportunities for Digital Health Vendors in the Pharmaceutical Industry: Naomi Fried, PhD is a highly experienced thought leader in healthcare innovation and digital health, with many years of innovation experience. Most recently, as Biogen’s first VP of Innovation, Medical Information, and External Partnerships, she led five functions that catalyzed innovation to support patients and healthcare professionals. She developed the strategy for and led the “innovation beyond the molecule” program to deliver non-pharmacological value to patients and providers. In our July, 2017 podcast
Dr. Travis Good interviewed Dr. Fried, resulting in a lively chat about the differences between the way pharma and hospital systems innovate, as well as the advantages digital health vendors can tap when working with pharma. Here were a few key takeaways from the podcast. Continue Reading