It’s impossible to stop the tsunami of fraud, ID theft, and medical ID theft until we rebuild US health IT systems to prevent open access to millions of patient records by thousands of hospital and insurance company employees.
Systems should be re-built to allow ONLY those few people who are directly involved with a patient’s treatment to access their health records.
- · ONLY those who carry out the orders of the patient’s physician should be able to access that patient’s electronic health records
- · the other hundreds or thousands of hospital system employees and staff members should not be physically or technically able to access that patient’s records
- · When a patient is admitted, one physician is in charge of diagnosis and treatment.
- · All people the attending physician orders to treat the patient (nurses, consultants, respiratory therapists, etc, etc) work for that physician, the “captain of the ship”
Health data cannot possibly be protected when thousands of people have access to millions of patient records. Employees of the hundreds of separate health technologies used by every hospital also have open access to millions of patient records.
The more people have access to sensitive personal health data, the easier it is to steal, sell, misuse it.