Quick Feedback Request
Highlighted Resources & Events
Need Assistance?
Would you like more assistance regarding Patient Portal strategies or support in using any of the included resource sets?

  Request Support

 

Upcoming Events
The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More

Resource Overview

Patient portals, sometimes also referred to as personal health record systems (PHR) are web-based portals commonly attached to electronic health record systems (EHRs). These patient-centered portals provide patients with the ability to login and review health information related to their care. Common patient portal services include ways in which to schedule appointments, send messages to their care providers, review test results and refill prescriptions.

Outside of the benefits to the patient, implementation of patient portals had come to the attention of healthcare providers due to the inclusion of Meaningful Use of objectives centered on the use of patient portals and electronic engagement with patients.  Stage 3 requirements are still being explored and the impact it will have on Health Centers is unknown. Therefore, it is a challenge for small practices and Health Centers to determine how to best derive value from Patient Portals and effectively implement them into their workflow.

The tools and articles posted below are meant to provide examples, templates and strategies that can assist Health Centers in understanding how patient portals can better engage their patients in self-management of their care, and after an initial investment in time and money can decrease the burden on their clinical and administrative staff.

Patient Portal Resources

Health Center Emergency Response Resources
Molly Rafferty
/ Categories: Electronic Patient Engagement, Mobile Health, EHR Implementation, Health Information Exchange, Relevance of HIE, Description of HIE, Implementation of HIE, HIPAA, Security Risk Analysis

Health Center Emergency Response Resources

October 2024

Ready to take the next step towards enhanced IT preparedness? The resources linked below, organized by topic, share actionable strategies that health centers can implement to move towards greater resilience.

Preserving access to Electronic Health Record (EHR) data

The Office of the National Coordinator for Health Information Technology’s Safety Assurance Factors for EHR Resilience (SAFER) self-assessment for contingency planning identifies recommended practices for managing EHR downtime, including use of redundant hardware, regular backup of data, use of uninterruptible power supplies, and protocols for use of paper forms.

The American Medical Association’s Guidelines for Developing EHR Downtime Procedures includes a list of considerations that planners can use when developing or improving information technology EHR downtime procedures. 

Preventing cyber-attacks

The HITEQ Center’s Guide to Essential Cybersecurity Tasks For Health Centers with Limited Resources provides a baseline of day-to-day tasks that health center IT and compliance staff should consider to protect their systems and comply with regulatory requirements. These include strategies to prevent successful phishing attacks, limit unnecessary physical and virtual access to systems, and keep security patches up to date. 

Responding to cyber-attacks

The U.S. Department of Commerce National Institute of Standards and Technology’s Guide for Cybersecurity Event Recovery describes the contents of a typical cyber-attack recovery plan and includes a checklist of items (a “playbook”) that should be implemented as part of the recovery process. 

Leveraging EHR data for patient outreach

The HITEQ Center’s “Accessing Your Data: Questions to consider with your Electronic Health Record Vendor,” is a checklist that can be used to talk with vendors about how health centers use EHR system capabilities for activities such as report generation. Relevant questions include 1) whether data, including reports, can be accessed from any location at any time; 2) whether and how your practice can generate ad hoc reports; and 3) whether it is possible to query the EHR to identify certain patients, for example, those with particular conditions, using particular medications, or in a particular geography.

Some EHR enhancers, such as Relevant’s Data Explorer, enable health centers to use the EHR to build reports without writing code and automate text messaging to subsets of patients.

Sharing data to prevent or lessen a serious or imminent threat

The U.S. Department of Health and Human Services Office for Civil Rights’ Hurricane Katrina Bulletin: HIPAA Privacy and Disclosures in Emergency Situations and Summary of the HIPAA Privacy Rule address the use and disclosure of protected health information by covered entities when that disclosure is believed to be necessary to prevent or lessen a serious and imminent threat to a person or the public.

Sharing data to support care continuity

In addition to the strategies for preserving access to EHR data, participation in local or state health information exchanges (HIE) or in vendor-supported EHR based data-sharing initiatives (e.g., Epic's Care Everywhere or eClinicalWorks PRISMA) facilitates data sharing.  Learn more about HIE capabilities in HITEQ Highlights: Advancing Interoperability & Health Information Exchange for Health Centers.

 

Print
744
Tags: health information exchangeData Sharing and Interoperabilityvendor communicationplanningData AccessHIPAAcybersecuritytextingtext messagingcyber securitytext messagecybersecurity risksCyber-resiliencyEnvironmental preparedness

Related Resources

Acknowledgements

This resource collection was cultivated and developed by the HITEQ team with valuable suggestions and contributions from HITEQ Project collaborators.