Title: Safeguarding patient privacy in electronic healthcare in the USA: the legal view

Authors: Diana Walsh, Katia Passerini, Upkar Varshney, Jerry Fjermestad

Addresses: School of Management, New Jersey Institute of Technology, Newark, NJ 07102, USA. ' School of Management, New Jersey Institute of Technology, Newark, NJ 07102, USA. ' Computer Information Systems, Georgia State University, Altanta, GA 30302, USA. ' School of Management, New Jersey Institute of Technology, Newark, NJ 07102, USA

Abstract: The conflict between the sweeping power of technology to access and assemble personal information and the ongoing concern about our privacy and security is ever increasing. While we gradually need higher electronic access to medical information, issues relating to patient privacy and reducing vulnerability to security breaches surmount. In this paper, we take a legal perspective and examine the existing patchwork of laws and obligations governing health information in the USA. The study finds that as Electronic Medical Records (EMRs) increase in scope and dissemination, privacy protections gradually decrease due to the shortcomings in the legal system. The contributions of this paper are (1) an overview of the legal EMR issues in the USA, and (2) the identification of the unresolved legal issues and how these will escalate when health information is transmitted over wireless networks. More specifically, the paper discusses federal and state government regulations such as the Electronic Communications Privacy Act, the Health Insurance Portability and Accountability Act (HIPAA) and judicial intervention. Based on the legal overview, the unresolved challenges are identified and suggestions for future research are included.

Keywords: electronic healthcare; patient privacy; security; confidentiality; electronic medical records; EMRs; electronic health records; EHRs; Health Insurance Portability and Accountability Act; HIPAA; e-healthcare; legal perspective; health information; law.

DOI: 10.1504/IJEH.2008.022668

International Journal of Electronic Healthcare, 2008 Vol.4 No.3/4, pp.311 - 326

Published online: 24 Jan 2009 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article