Comments on: HIPAA and EMR Design

By: Ratika

Ratika — Wed, 08 Sep 2010 06:37:34 +0000

For privacy and security concerns, people would rely on an EMR which is HIPAA compliant. HIPAA would have its impact more on the process of compliance rather than the actual design or framework of an EMR.

By: EMR Medical

EMR Medical — Fri, 19 Mar 2010 15:14:06 +0000

Thanks for sharing this information and article post.

By: Bob

Bob — Fri, 11 Jan 2008 03:27:44 +0000

@EMR and HIPAA:

Audit trails are not really part of HIPAA (45 CFR Parts 160 and 164) which is primarily concerned with privacy rules. You’re thinking of the 21 CFR Part 11 rules for electronic records and signatures which is what the FDA uses for all life science industries.

By: EMR and HIPAA

EMR and HIPAA — Wed, 09 Jan 2008 06:24:31 +0000

I think that your missing a major point that an EMR company must cover: Audit trails. Every EMR company I’ve ever seen has to make sure that they have good audit trails built into their system in order to comply with HIPAA. Without the audit trail of who did what, then that EMR would be in trouble.

EMRs are also much more granular with who can see what. HIPAA is pretty clear that you should only see what you need to do your job. An EMR really takes this to the next level because of the granular security you can implement.

The interesting thing is that there probably isn’t an EMR out there that isn’t HIPAA compliant. So, that question really doesn’t need to be asked now. Plus, since HIPAA compliancy is now complete for most EMR companies, then it’s a very marginal cost for the EMR to continue to comply with EMR. However, that initial jump to comply with HIPAA certainly cost EMR companies some money, which they then most probably passed on to the consumer.