---- Original message ---- >Date: Tue, 4 Mar 2003 15:57:46 -0800 (PST) >From: Greg Woodhouse <[EMAIL PROTECTED]> What >obstacles to achieving HIPAA compliance are unique to open source >systems? Off-hand, I think one area that would be need to be addressed [snip] >--- Adrian Midgley <[EMAIL PROTECTED]> wrote: >> Generically, what would an open source medical system require in >> order to maintain HIPAA compliance? >> -- >> From one of the Linux desktops of Dr Adrian Midgley >> http://www.defoam.net/ >>
Both of these questions are great questions - from what I've personally seen, vendors are trying to answer these two questions about their own systems. In regards to compliance, my feeling is that Open Source systems have a great chance of moving more into the mainstream based on their ability to *become* compliant. That's because EVERYONE is trying to *become* compliant. HIPAA, in other words, has leveled the playing field somewhat with respect to compliance for systems. The identification of obstacles will come out in a systematic review of a given system, open source or not. Taking into consideration the operating system, and supporting systems is important in this vein also. As far as what open source medical systems must do - in short they must meet the technical and functionality standards. As other threads on HIPAA on this list and formal government press releases have suggested, it's a best-effort situation. Due diligence on the part of the system developer seems to be key. With respect to submitting data to Medicare for payment, it's more cut and dry. You have to use X.12 transactions or you don't get paid - that's just my understanding though. I've seen reference to HL7 in the legislation. To be safe thought I'd opt for X.12. As far as JACHO goes, I am certain they'll be watching specifically for HIPAA violations in both systems and business processes. The JACHO surveys I've participated in are all about regulation compliance. Richard Schilling, MBA Proprietor National Informatics Company R&D of Information Technology http://www.nationalinformatics.com http://www.nationalinformatics.net
