


Who Owns Your Health Data? 99
porsche911 writes "The Wall Street Journal has an interesting article about how the data from Implanted health devices is managed and the limitations patients run into when they want to see the data. Companies like Medtronic plan to sell the data but won't provide it to the person who generated it. From the article: 'The U.S. has strict privacy laws guaranteeing people access to traditional health files. But implants and other new technologies—including smartphone apps and over-the-counter monitors—are testing the very definition of medical records.'"
What rights? (Score:5, Informative)
HIPPA only applies to health care providers. Anyone else who gets your data by any means, is not restricted by HIPPA. Notable examples are life insurance companies. You sign a waiver to give them access to your health info to qualify for a policy. After that they can do whatever they want with the data. They can, and do, routinely pass it along to a medical information clearing house in Massachusetts (I forget the name of it), which is a third party. The clearing house dishes out the information (including personal identifying information) to anyone who wants to pay for it.
Americans imagine that they own their personal data. Data (information, facts) are not property and can not be owned. Intellectual property laws bestow some rights but not "ownership" You can own the rights but not the facts. If you could own facts, then you could prevent police and courts from using facts about your behavior against you.
Records, on the other hand are ordinary property. Whoever owns the records can treat them like any other property, regardless of the information they contain (exceptions for national security, for parties covered by HIPPA, records under subpoena and so on). There was once a notable case of a hospital in Las Vegas. They rented a warehouse to store paper patient records. They failed to pay the rent. The landlord sold all property stored in the warehouse to recover money owed to him. Neither the landlord, nor any subsequent owner of those paper records was restricted in any way as to what they could do with them.
Re:If a Medical Doctor was involved in the collect (Score:4, Informative)
I believe NEMSIS' ultimate goal is to benefit individual patients by providing a mechanism to share en-route EMS data to participating hospitals and the various health departments.
This may be different than the goals of the medical companies mentioned in the article that may benefit pharmaceutical companies or others.
In other words, NEMSIS seems to be enforcing a data format that enables the transfer of data between medical participants (directly benefits patient and others may benefit indirectly from the government agency monitoring), while the companies mentioned in the article are trying to market the data that they have collected (directly benefiting themselves and others may benefit indirectly from advances made in medical science from aggregated data being sold).
Re:If a Medical Doctor was involved in the collect (Score:5, Informative)
Re:What rights? (Score:4, Informative)
Actually, no, he's mostly right, to my surprise. From http://www.hhs.gov/ocr/privacy/hipaa/understanding/coveredentities/index.html [hhs.gov]:
"The Privacy and Security Rules apply only to covered entities. Individuals, organizations, and agencies that meet the definition of a covered entity under HIPAA must comply with the Rules' requirements to protect the privacy and security of health information and must provide individuals with certain rights with respect to their health information. If an entity is not a covered entity, it does not have to comply with the Privacy Rule or the Security Rule."
The one thing he got wrong is that while the life insurance company's use of health information is not covered by HIPAA, the medical information clearinghouse *is*, as such clearinghouses are "covered entities" (along with health care providers and health plans--while your life insurance isn't covered by HIPAA, your health insurance is).
Re:If a Medical Doctor was involved in the collect (Score:4, Informative)
It already is a political issue, the moment the idiots wanted politics involved in HealthCare.
If they're idiots, why is it that health care with lots of government involvement has better patient outcomes for lower costs?
This is the full problem of centralizing decision making away from the people.
The problem with patients making all the key decisions is that patients as a rule (a) don't have a clue what they're deciding, (b) have no idea what it costs, (c) would as a rule pay any price to not die, and (d) don't always have cash on hand when they would need to pay the price to not die. Those are the basic reasons why free markets don't produce optimal outcomes for health care.
Re:Health Data is owned by the Patient (Score:3, Informative)