Interesting People mailing list archives
Re: The Online Medical Records Trap
From: David Farber <dfarber () cs cmu edu>
Date: Fri, 5 Oct 2007 10:20:45 -0400
Begin forwarded message: From: Dan Lynch <dan () lynch com> Date: October 4, 2007 2:16:40 PM EDT To: Dave Farber <dave () farber net> Cc: Lauren Weinstein <lauren () vortex com> Subject: Re: [IP] The Online Medical Records TrapLauren, this is more than a two edged sword! This is the Ginzu slasher from hell. Why just yesterday my doc was pointing out to me the folly of putting
my records into a database that the insurance companies could eventuallyaccess to deny me coverage. He does not trust them for a second. So, this
a going to be a huge can of worms for sure. Dan On 10/4/07 9:54 AM, "David Farber" <dfarber () cs cmu edu> wrote:
Begin forwarded message: From: Lauren Weinstein <lauren () vortex com> Date: October 4, 2007 12:52:51 PM EDT To: dave () farber net Cc: lauren () vortex com Subject: The Online Medical Records Trap The Online Medical Records Trap http://lauren.vortex.com/archive/000306.html Greetings. Microsoft is rolling out their centralized medical records project ( http://www.nytimes.com/2007/10/04/technology/04nd-soft.html ) -- with the somewhat misleading name "HealthVault" -- and it's time for consumers to start paying attention to what's going on in this sector -- Google is working along similar lines as well. (Why do I call the HealthVault moniker misleading? Keep reading.) There is a vast market assumed for centralized recording of every aspect of your medical life, initially through free accounts where you would input the data yourself, but as quickly as possible the intention is to move toward having doctors, hospitals, pharmacies, and everyone else involved in your medical treatment entering the data directly. The federal government is also a big booster of the centralized medical data idea -- a fact that might be enough to give one pause in and of itself. The selling points for such projects seem obvious enough. Instant access to your medical data for emergencies or other purposes, ease of seeing test results and (in theory) correcting errors, and so on. All good stuff. But what's not obvious from the sales pitches are the downsides, and they could be serious indeed. The term HealthVault is misleading because we know by definition that such services will be anything but a vault when it comes to privacy. You can almost hear the conversations at Microsoft where they tried to come up with a name that gave the impression of security, Fort Knox, and impenetrability. And of course, Microsoft is making all the usual claims about encryption, safety, and the same promises we always hear about centralized data systems. But the big risk in centralized medical data -- arguably the most personal data about any of us -- isn't about whether the servers can be hacked or the communications eavesdropped (though these are real issues, to be sure). The most serious problem is that once medical data is in a centralized environment, there are essentially no limits to who can come along with a court order (or in the case of the government, as we know, secret orders or illegal demands that can't usually be resisted) for access to that data. Service providers typically have no choice but to comply. The only way to prevent this is for the data to be encrypted in such a way that even the service provider cannot access it without your permission, even with a court order staring them in the face. As far as I know, none of the systems currently in development or deployment take that approach to encryption -- but I'd love to have someone inform me that such techniques would be used. That would change the equation considerably. Who might want access to your medical data? Insurance companies obviously, and one might expect them to lobby hard for such access, in the name of "reducing fraud and insurance costs" of course. Many employers would also love to get access, to help weed out medically expensive employees and applicants. Perhaps more ominously, broad "fishing expeditions" by the government -- both for research, investigative, and other purposes -- become far easier when medical records are centralized. It's very difficult to abusively search or gather such data in a broad manner when it consists mainly of manila folders in cabinets at your doctors' offices. But once this data goes online centrally, it's one of those "bingo!" moments for those who would just love to pry into the medical histories of consumers and citizens. Frankly, if people want to use such centralized systems voluntarily I have no serious objection. However, my gut feeling is that most people signing up won't have a clue about the negative ramifications of these services -- certainly the services themselves won't be trumpeting such shortcomings and risks. And worse, over time it seems likely that the service providers -- possibly in conjunction with government agencies at various levels, will move to make such use a default condition (that is, it applies unless you opt-out), and ultimately pressure everyone toward a mandatory approach. There could be a useful role for such centralized medical records services, but only in an environment of laws and related broad privacy protections that simply don't exist now, and don't appear to be forthcoming anytime soon. In their absence, using centralized medical records services at this time, except in very special and limited circumstances, would appear to be unwise and is not recommended. --Lauren-- Lauren Weinstein lauren () vortex com or lauren () pfir org Tel: +1 (818) 225-2800 http://www.pfir.org/lauren Co-Founder, PFIR - People For Internet Responsibility - http://www.pfir.org Founder, PRIVACY Forum - http://www.vortex.com Member, ACM Committee on Computers and Public Policy Lauren's Blog: http://lauren.vortex.com ------------------------------------------- Archives: http://v2.listbox.com/member/archive/247/=now RSS Feed: http://v2.listbox.com/member/archive/rss/247/ Powered by Listbox: http://www.listbox.com
Tel. 707-967-0203 Cell 650-776-7313 My assistant is Dori Kirk Tel. 707-255-7094 dori () lynch com ------------------------------------------- Archives: http://v2.listbox.com/member/archive/247/=now RSS Feed: http://v2.listbox.com/member/archive/rss/247/ Powered by Listbox: http://www.listbox.com
Current thread:
- The Online Medical Records Trap David Farber (Oct 04)
- <Possible follow-ups>
- Re: The Online Medical Records Trap David Farber (Oct 05)
- The Online Medical Records Trap David Farber (Oct 05)