Submitted by Ralph Morrison, 2nd Year Delegate
1) Proposed Privacy & Security Resolution
2) Proposed Credential in Health Data Analytics
3) Proposed Bylaws Amendments on Certification Governance
ACTION ITEM TITLE: Resolution on Privacy and Security
MOTION: I move to approve the Resolution on Privacy and Security.
The motion was made by the Missouri Health Information Management Association
Supported by the Privacy and Security Practice Council
RATIONALE:
At Winter Team Talks in Washington DC, it was suggested a resolution be drafted to address the number of highly publicized breaches that are occurring. The resolution asks that AHIMA members call on healthcare organizations to educate on the use of health information management, that HIM professionals be on the forefront, and that AHIMA endorse consistent healthcare policies and establish standards.
BACKGROUND:
The House of Delegates Team on Best Practice and Standards reviewed the proposed standards and were supported as written. Also, the proposal was shared at Summer Team Talks without comment.
REFERENCES: See proposed resolution below:
Title: Healthcare Organizations Must Create Consistent Privacy and Security Practices
Submitted by the Missouri Health Information Management Association
Supported by the Privacy and Security Practice Council
In 2007 and 2008 a number of patient privacy breaches have made the headlines. From the many highly publicized breaches of celebrities’ health information to the 3000 electronic patient records on a laptop stolen from the trunk of a car, it is obvious that the privacy and security standards are much too lax for many healthcare providers and health plans. Such deficient standards undermine public confidence in the privacy and security of electronic health records, which could hinder their future adoption and undermine President Bush’s call for most Americans to have access to an interoperable electronic medical record by 2014.
AHIMA is committed to being the leader in protecting health information from inappropriate use and disclosure, ensuring confidentiality and integrity of identifiable health information by applying privacy and security measures to enhance public confidence in the protection of data.
Whereas, patients have a fundamental right to health information privacy and security;
Whereas, the media has reported the improper access and disclosure of several celebrities’ health information;
Whereas, there have been many instances of stolen computers containing unencrypted, non-secure health information;
Whereas, health information should only be accessed by those who need the information for continuity of care, payment, healthcare operations, and/or applicable laws, based on the concept of minimum necessary;
Whereas, health information must be kept in a secure and reliable manner that ensures its accuracy and integrity;
Whereas, health information professionals have the expertise in privacy and security of health information and must abide by AHIMA’s Code of Ethics to protect the confidentiality of health information;
Therefore, be it
Resolved, that AHIMA members call on healthcare organizations to educate users of health information about the need for improved and consistent information privacy and security and the role HIM professionals have in protecting and securing information;
Resolved, that AHIMA call on healthcare organizations to improve privacy and security of health information through greater attention to the concept of minimum necessary, encryption of health information and use of biometric-based keys;
Resolved, that HIM professionals be on the forefront of auditing and monitoring access to individual health information, especially high-profile patients;
Resolved, that AHIMA endorses consistent internal sanction policies that are enforced equally across all disciplines when a privacy or security breach is discovered and external penalties for organizations that do not take appropriate steps to prevent privacy or security breaches.
Resolved, that AHIMA supports efforts to establish consistent patient health information privacy and security legislation to establish standards for national health information exchange and eliminate confusing and contradictory state regulations.
New Credential in Health Data Analytics
In 2007, the AHIMA Council on Certification (CoC) was charged to determine the need for a new credential in HIM, to increase the size of the HIM-certified workforce and to further engage new, non-certified members at a professional level. Subsequently, the CoC presented a plan to develop a new credential in the area of Health Data Analytics. The CoC reports that the majority of the feedback it has received from HOD members has been positive.
The CoC based its proposal to establish the new credential on the results of a 2006 job analysis study, which indicated the “emergence of a ‘data analytics’ domain as being both substantive and distinct as a full-time role in and of itself. They also noted that the study suggested that the performance domain associated with this role would increase in both importance and prevalence through the next 5-7 years. Although a definite title for this role has not been determined at this time, a CoC job analysis task force has developed this statement describing the job:
“The Certified Health Data Analyst (working title) professional provides expertise to acquire, manage, analyze, interpret, and transform data into accurate, consistent, and timely information. This individual balances the ‘big picture’ strategic vision with the details of the project. Duties include communicating with individuals and groups at multiple level internal and external to the organization. Therefore, this professional possesses broad knowledge of the processes and outputs of many departments within the organization. In addition, this professional possesses the ability to prioritize and manage multiple projects.”
The CoC task force also identified the following job competencies as fundamental skills for this new credential:
1. Data Management
- Assist in the development and maintenance of the data architecture and model to provide a foundation for database design that supports the business’ needs.
- Establish uniform definitions of data captured in source systems to create a reference tool (data dictionary)
- Formulate validation strategies and methods (i.e., system edits, reports, and audits) to ensure accurate and reliable data.
- Evaluate existing data structures using data tables and field mapping to develop specifications that produce accurate and properly reported data.
- Integrate data from internal and external sources in order to provide data for analysis and/or reporting.
- Facilitate the update and maintenance of tables for organizations’ information systems in order to ensure the quality and accuracy of the data.
2. Data Analytics
- Analyze health data using appropriate testing methods to generate findings for interpretation.
- Interpret analytical findings by formulating recommendations for clinical, financial, and operational processes.
- Validate results through qualitative and quantitative analyses to confirm findings.
3. Data Reporting
- Design metrics and criteria to meet the end users’ needs through the collection and interpretation of data.
- Generate routine and criteria to meet the end users’ needs through the collection and interpretation of data.
- Generate routine and ad-hoc reports using internal and external data sources to complete data requests.
- Present information in a concise, user-friendly format by determining target audience needs to support decision processes.
The CoC has proposed the following standards for initial certification:
1. Baccalaureate degree or higher and a minimum of five years of healthcare data experience;
or
2. Healthcare Information Administration credential (RHIA) and a minimum of one year of healthcare data experience.
They evidently intend to verify healthcare data experience through the application process, which will require submission of a resume describing work related experience in healthcare data management, analysis, and reporting. They propose to utilize the current CE structure and requirements, as defined for the RHIA and/or multiple credentials, for maintenance of the Health Data Analytics credential.
3rd Party Accreditation of AHIMA’s Council on Certification
A bylaws amendment has been proposed with the intent of gaining third party accreditation for the AHIMA Council on Certification (CoC). The CoC is responsible to create and maintain credentialing and re-credentialing processes for AHIMA, to include developing the future direction of AHIMA credentials, overseeing all aspects of test development, as well as administering policies and procedures pertaining to certification maintenance for all AHIMA credentials. The substance of the proposal is to transfer the powers and duties of approving the standards for initial certification and the standards for maintenance of certification from AHIMA’s House of Delegates (HOD) to the CoC. The CoC says that in order to receive the third party accreditation, by the National Commission for Certifying Agencies (NCCA) and the American National Standards Institute (ANSI), it must demonstrate autonomy in decision-making and protection from undue influence with respect to essential certification elements (i.e., standards for initial certification and the subsequent maintenance of certification for all AHIMA credentials).
As in accreditation by the JCAHO for hospitals, this accreditation process is voluntary and only granted to an organization that has met predetermined and standardized criteria in the areas of competency, authority, or credibility. The CoC indicates that such third party
accreditation offers value to AHIMA in that:
1. It will enhance the competitive value of AHIMA credentials, by demonstrating independent verification of the validity of credentialing process, providing a means to differentiate AHIMA credentials from those of competitors.
2. Encourage both domestic and international confidence in the AHIMA certification programs.
3. Promote consistency and equivalency of multiple exam forms by adopting evidence-based best practices confirmed through independent peer review.
4. Reduce multiple audits and remove portability barriers to trade and/or globalization in working towards the goal of ‘certified once – accepted everywhere.’
CoC representatives have indicated that when and if third party accreditation is achieved, that the CoC will continue to be a standing committee of AHIMA. GHIMA members are encouraged to learn more about this proposal by researching the associated threads on the Communities of Practice and to share their opinions with their elected GHIMA leaders, so their views can be reflected when the Georgia delegates vote on this issue in the House of Delegates.
|
PDF files,
