AMA to draft model legislation on information exchanges
■ The Association plans to delve into patient data privacy and ownership, especially as it pertains to payer involvement.
Chicago -- There is a need for more research on how to protect patient and physician interests regarding the ownership and use of clinical data sent to and from health information exchanges, according to the AMA House of Delegates.
During the Association's Annual Meeting, the house adopted policy calling on the AMA to study the issue and draft model legislation. The policy says model legislation is needed that calls attention to who owns the clinical data and who can access it, and when.
Nephrologist Steven Kanig, MD, a delegate for the New Mexico Medical Society and author of the policy, said in committee testimony June 19 that his introduction of the resolution came from his experience working with a health information exchange in New Mexico.
He said some plans in recent months have acquired HIE technology vendors, underscoring the need for better oversight.
UnitedHealth Group's health IT consulting subsidiary Ingenix bought Axolotl, an HIE technology provider, in 2010. United changed the Ingenix name to OptumInsight in April.
Aetna also entered the HIE market in 2010 with the purchase of Medicity.
One issue the AMA policy says model legislation should address is "no payer would be allowed to obtain identifiable clinical data on individuals who are not currently insured members of a health plan belonging to that payer."
Informed consent would be the possible exception.
Joseph Heyman, MD, an obstetrician-gynecologist in Amesbury, Mass., who chairs OptumInsight's physician advisory board, said he and others on the board welcome the AMA's policy.
"It's really consistent with our thinking, and I believe it's consistent with the thinking of OptumInsight as well," said Dr. Heyman, who served as chair of the AMA Board of Trustees in 2008-09. He said the separation of OptumInsight from UnitedHealth Group creates a firewall that prevents the sharing of data between the two.
Dr. Heyman said physicians contracting with HIEs always should look for contract language that spells out how the HIE is going to protect patient data.
"If there's anybody who needs to understand how that data is going to be used, besides the patient, it's that physician," he said.