Posted in معايير صحية،أدارة المعلومات الصحية والمعلوماتية،الملف الطبي الإلكتروني،البيانات الصحية،التأمين الصحي،الترميز الطبي،التطبيب عن بعد،الخدمات الصحية،انفوجراف،اخبار صحية عامة،خصوصية و أمن المعلومات الصحية،دراسات علمية: التقنية الصحية،عام

مصطلحات يكثر استخدامها في النظام الصحي الأمريكي A Guide to Healthcare Buzzwords and What They Mean

المصطلحات التالية تم نقلها من احد المواقع ويمكن الوصول لها من خلال هذا الرابط (هنا) دوري هو نقلها وترجمة العض منها فقط. قد تكون الترجمة ايضا غير دقيقة لكن هي محاولة لوضع المعلومات في مكان واحد! هنا نبذه عن كاتب هذه القائمة رابط لكتابات اخرى.

Mary Pat Whaley knows healthcare buzzwords and consults at Manage my Practice


An acronym for “Accountable Care Organization”, an ACO is a model of healthcare delivery in which a group of healthcare providers agree to accept payment for their services based on the aggregated health outcomes of the patients they see, as opposed to the total number of services performed. ACOs reward providers in a “fee for health” model, as opposed to a traditional “fee for service” model. Although the term ACO can apply to a variety of types of organizations, regulations for establishing ACOs to participate in the Medicare Shared Savings Program specifically were included in the Patient Protection and Affordable Care Act of 2010.

Big Data

“Big Data” is a blanket term used to describe the tremendous amount of raw data that we create as part of our everyday lives. As we become more proficient in capturing, storing, and analyzing these massive data sets – and the increasingly complex tools needed to do so – there is tremendous hope in the ability for industries to glean insights from the mountain of data they already have. Healthcare, with the tremendous amount of data that is already collected and stored in the form of medical records, is considered one of the areas with the most to gain from advances in “Big Data” tools.


An acronym for “Certification Commission for Healthcare Information Technology”, CCHIT is one organization authorized by the Office of the National Coordinator of the Department of Health and Human Services to certify Electronic Health Record products for quality, security and interoperability. This certification is necessary for providers to receive “stimulus” funds from Medicare or Medicaid as reimbursement for achieving “Meaningful Use” of the EHR. Other organizations providing certifications include Drummond Group, ICSA Laboratories, Inc. and InfoGuard Laboratories, Inc.

Cloud vs. Closet

The “Cloud” versus the “Closet” is a way of defining the two most common ways of managing and sharing software products in a medical practice. The “Closet” is the traditional model where a server is installed, often into an extra closet where the phone system is also kept that runs the Practice Management and/or Electronic Medical Record software on the desktops in the practice. Generally, the practice owns their own software and hardware, and pays for it upfront as a capital expense. In the “Cloud” model, which is rapidly gaining favor, a constant Internet connection allows the server hardware to be kept offsite in the vendor’s data center. The software is paid for on a monthly, operational expense basis, and security, upgrades and maintenance are all outsourced to the vendor.


Acronyms for “Electronic Medical Record” and “Electronic Health Record.” The two terms are generally used interchangeably to describe any software that that documents medical services delivered between providers and patients. There is however a general distinction between the two, highlighted in this blog post from the ONC. An Electronic Medical Record generally refers to the digitized version of a paper record that is kept in an office as a record of the patient’s services from that provider. In other words, only the patient’s interactions with the providers of that office. An Electronic Health Record on the other hand generally refers to the complete history of a patient’s life and conditions as they visit different providers in different health settings. With the EHR’s focus on health as opposed to medicine, and portability with the patient as opposed to static and office-based, EHR tends to be the “official” term used by the ONC.


“eRx” is an abbreviation for “e-prescribe”, or the ability to transmit information from a provider to a pharmacy and back to facilitate filling prescriptions with a completely electronic process. By eliminating the paper scripts and the patients having to take them to their pharmacy, eRx facilitates more accurate, timely information between prescriber and pharmacy, and ensures that the information is accurately logged into the patient’s EHR. The ability to e-prescribe is a component of achieving Meaningful Use for providers to receive stimulus funds.


“patient harm caused at least in part by the application of health information technology.”


An acronym for “High Deductible Health Plan”, an HDHP is a type of insurance coverage where more of the initial cost of care is shifted to the responsibility of the patient. Using higher deductibles, as well as co-pays or co-insurance, high-deductible health plans are often combined with Health Savings Accounts to provide heath coverage at lower premiums for patients and/or employers. As health insurance costs continue to rise, HDHPs are becoming more popular as a coverage model.

HIE (Health Information Exchange)

A Health Information Exchange is a central hub where different health providers and locations can “exchange” electronic medical information so that a patient’s medical history is available to any provider or care setting in which the patient receives treatment. The exchange allows for the health data to be shared across different types of software in different places, so access to the exchange insures access to the most accurate patient data available. Health Information Exchanges are being set up in regional, state and national settings, and were a key part of Patient Protection and Affordable Care Act (PPACA or ACA) of 2010.

HIX (Health Insurance Exchange)

A Health Insurance Exchange is a controlled marketplace where consumers can compare and purchase health insurance, as well as find out about any subsidies or tax benefits they can take advantage of to offset the cost of coverage. Each state has the option of setting up their own state-level exchange, or participating in the federally-run exchange. The exchange also sets minimum coverage levels for each state, and mandates that insurance companies disclose actuarial percentages and coverage levels of similar plans so that consumers can make informed decisions about coverage.


Health Information Management is the field of study that deals with overseeing and maintaining health care information for a patient population. Although HIM refers to the management of both paper-based and electronic health records, the field increasingly focuses on the storing, securing, and disclosing of electronic data. Issues like ethics, health informatics, and health information policy are changing the way Health Information Management is viewed in the larger context of the healthcare system.


An acronym for the “Health Insurance Portability and Accountability Act of 1996”, HIPAA is a federal statute that was designed to regulate health insurance to make it easier to “carry” coverage with you after leaving a job, as well as to set standards for the protection and transmission of protected health information. HIPAA was appended by the HITECH Act of 2009 to set disclosure reporting requirements in the case of a breach as well as define business associates as entities covered under HIPAA. Generally, when people refer to “HIPAA Requirements” they are talking about the privacy restrictions of the two bills.


An acronym for “Health Savings Account”, an HSA is a specialized bank account that allows its holder to defer federal tax liability in order to save for future medical expenses. Money deposited in an HSA is not subject to Federal Income Tax. HSAs, like a flexible spending account, or a health reimbursement account are combined with a high deductible health plan to replace traditional health insurance with money from the HSA covering short term costs and helping with patient responsibilities while the HDHP covers catastrophic injuries or illness.


ICD-10 is an abbreviation for “International Statistical Classification of Diseases and Health Related Problems, 10th revision”. The ICD system is the set of alphanumeric codes that are used to classify diseases and bill medical payers for services. The United States currently uses the ICD-9 system, but is set to switch to the new standard on October 14, 2014. ICD-10 is much more complex than ICD-9, with almost five times as many available codes, and a much more specific hierarchy. ICD-10 is also referred to as “I-10.”


Interoperability is the concept that information stored in EHR software should be able to be usable by any other software package. Interoperability is key to coordinating and improving care, because the health information is worthless without the software compatibility to share it between providers. This “breaking down of barriers” between different EHR software packages is crucial not only to sharing health information, but to creating a thriving and innovative healthcare information technology marketplace. Examples are a hospital system EMR’s interoperability with a private practice EMR, and both system’s EMR interoperability with a reference laboratory’s Information System.


An acronym for “Independent Practice Association”, an IPA is a group of independent physicians, or groups representing independent physicians to contract their services to managed care organizations and payers. IPAs can be formed to collaborate on care in a region, promote the political effectiveness of the independent physician, as well as to negotiate professional fees for their members, although it is important to note that the IPA does not negotiate on behalf of its members for services delivered outside managed care agreements because of federal trade laws.

Meaningful Use (MU)

Meaningful Use is the phrase used in the 2009 HITECH Act to describe the standard providers must achieve to receive incentive payments for purchasing and implementing an EHR system. The term meaningful use combines clinical use of the EHR (i.e. ePrescribing), health information exchange, and reporting of clinical quality measures. Achieving meaningful use also requires the use of an EHR that has been certified by a body such as CCHIT, Drummond Group, ICSA Laboratories, Inc. or InfoGuard Laboratories, Inc. The term can also apply informally to the process of achieving the standard, for example “How is our practice doing with meaningful use?”


An abbreviation for Mobile Health, mHealth is a blanket label for transmitting health services, and indeed practicing medicine, using mobile devices such as cell phones and tablets. mHealth has large implications not only for newer devices like smartphones and high-end tablets, but also for feature phones and low-cost tablets in developing nations. Many different software and hardware applications fit under the umbrella of mHealth so the term is used conceptually to talk about future innovations and delivery systems.


An acronym for Natural Language Processing, NLP is a field of study and technology that seeks to develop software that can “understand” human speech – not just what words are being said, but what ismeant by those words. By “processing” text input into an NLP program, large strings of text can be parsed into more traditionally meaningful data. For example, narrative from a doctor in a medical record could be transferred into data for research and statistical analysis. If we had every medical record and narrative in history, we could search it and look for trends – and possible new cures and symptoms. IBM’s famous Watson machine that could “listen” to Jeopardy! clues and answer is an advanced example of NLP.


An acronym for “Office of the National Coordinator for Healthcare Information Technology,” the ONCHIT is a division of the Federal Government’s Department of Health and Human Services. The Office oversees the nation’s efforts to advance health information technology and build a secure, private, nationwide health network to exchange information. Although the National Coordinator position was created by executive order in 2004, the Office and its mission were officially mandated in the 2009 HITECH Act as a part of the stimulus package.

Patient Engagement

Patient Engagement is a broad term that describes the process of changing patient behaviors to promote wellness and a focus on preventative care. “Engagement” can roughly be read to describe the patient’s willingness to be an active participant in their own care and to take responsibility for their lifestyle choices. Patient Engagement efforts can be as simple as marketing campaigns for public heath and appointment reminders, and as advanced as wearable monitors that can transmit activity and exercise information so patients can track their fitness. Improving the health system’s ability to engage patients is considered key to lowering healthcare spending and attacking epidemics like obesity and heart disease.

Patient Portal

A patient portal is software that allows patients to interact, generally through an internet application, with their healthcare providers. Portals enable communication between providers and patients in a secure environment with no fear of inappropriate disclosure of the patient’s private healthcare information. Patients can get lab results, request appointments and review their own records without calling the provider. Patient portals can be sold as a standalone software module or as part of a comprehensive Practice Management/EHR package.

Patient-centered Care

Patient-centered care is a healthcare delivery concept that seeks to use the values and choices of the patient to drive all the care the patient receives. As elementary as it sounds, developing a culture that places the needs and concerns of the patient – the whole patient – at the center of the decision-making process is a new development in the healthcare system. Patient engagement is at the core of patient-centered care, because the patient is the central driver of the decisions – as is only right!


An acronym for Patient Centered Medical Home, a PCMH is a model for healthcare delivery where most or all of a patient’s services for preventative, acute and chronic primary care are delivered in a single place by a single team to improve patient outcomes and satisfaction as well as lower costs. PCMHs may also operate under a different reimbursement structure, as they can be paid on an outcome basis or on a capitation model as opposed to fee-for-service.


An acronym for a “Personal Health Record,” a PHR is a collection of health data that is personally maintained by the patient for access by caregivers, relatives, and other stakeholders. As opposed to the EHR model, in which a single hospital or system collects all the health information generated in the facility for storage and exchange with other providers, the PHR is maintained, actively or passively with mobile data capture or sensor devices, by the patient. The PHR can supplement or supplant other health records depending on the way it is used.


An acronym for the “Patient Protection and Affordable Care Act,” the PPACA was a federal law passed in 2010 to reform the United States healthcare system by lowering costs and improving access to heath insurance and healthcare. The PPACA uses a variety of methods – market reforms to outlaw discrimination based on gender or pre-existing condition, subsidies and tax credits for individuals, families and employers, and an individual mandate forcing the uninsured to pay penalties – to increase access to insurance and lower healthcare costs.


An acronym for the “Patient Quality Reporting System,” PQRS is a mechanism by which Medicare providers submit clinical quality and safety information in exchange for incentive payments. Physicians who elect not to participate or are found unsuccessful during the 2013 program year, will receive a 1.5 percent Medicare payment penalty in 2015, and 2 percent Medicare payment penalty every year thereafter.


An acronym for “Recovery Audit Contractor,” a RAC is a private company that has been contracted by the Centers for Medicare and Medicaid Services to identify and recover fraudulent or mistaken reimbursements to providers. There are four regions of the United States, each with its own RAC which is authorized to recover money on behalf of the Federal Government. A pilot program between 2005 to 2007 netted nearly $700 million dollars in repayments and the program was made permanent nationwide in 2010.


An acronym for “Regional Extension Center,” a REC is a organization or facility funded by a federal grant from the Office of the National Coordinator for Health Information Technology to provide assistance and resources to providers who want to adopt an EHR and achieve meaningful use but need technical or deployment support to get their system up and running. There are currently 62 RECs in the United States who focus primarily on small and individual practices, practices without sufficient resources, or critical access and public hospitals that serve those without coverage.


A Registry is a database of clinical data about medical conditions and outcomes that is organized to track a specific subset of the population. Registries are important to track the efficacy of drugs and treatment, as well as to analyze and identify possible treatment and policy opportunities to improve care. A registry can also be used to report PQRS.


Telehealth is a broad term that describes delivering healthcare and healthcare services through telecommunication technology. Although the terms telehealth and mhealth can be used somewhat interchangeably, “telehealth” tends to focus more on leveraging existing technologies – phone, fax and video conferencing to deliver services over a long distance, or to facilitate communication between providers. Remote evaluation and management and robotics are both examples of care innovations that would fall under the telehealth umbrella.

Value-based Purchasing

Value-based purchasing is a reimbursement model for health care providers that rewards outcomes for patients as opposed to the volume of services provided. Both through increased payments for positive outcomes, and decreased payments for negative ones, value-based purchasing seeks to lower costs by focusing on increasing quality and patient-focus. Accountable Care Organizations and Patient Centered Medical Homes are both examples of delivery systems that rely on value-based purchasing.

Privacy & Security Training Games

Privacy & Security Training Games

Privacy & Security Training Games

لعبة تم تطويرها للمساهمة برفع مستوى الوعي لدى الممارسين الصحيين عن مشاكل أمن وخصوصية المعلومات الصحية في  الملف الطبي الإلكتروني. اللعبة تم تطويرها من قبل مكتب المنسق الوطني لتقنية المعلومات الصحية بالولايات المتحدة التابع لادارة الصحة والخدمات الأنسانية

مقارينة بين مخاطر خصوصية وأمن المعلومات الصحية في الملف الورقي والإلكتروني

مقارينة بين مخاطر خصوصية وأمن المعلومات الصحية في الملف الورقي والإلكتروني

What are the privacy and security risks of electronic v. paper health records?

الرابط التالي يحتوي على مقارنة بين مخاطر خصوصية وأمن المعلومات الصحية في الملف الورقي والإلكتروني.

Posted in أدارة المعلومات الصحية والمعلوماتية،خصوصية و أمن المعلومات الصحية

دليل خصوصية و أمن المعلومات الصحية في الملف الطبي الإلكتروني

الدليل التالي مقدم من مكتب المنسق العام لتقنية المعلومات الصحية التابع لادارة الخدمات الصحية والانسانية الأمريكية. الدليل يحتوي على مواد تعليمية وتثقيفية عن خصوصية و أمن المعلومات الصحية. ايضا يشرح اهمية وجود افضل الأنظمة والإجراءات المتعلقة بخصوصية و أمن المعلومات. الدليل تم اصداره تقريبا في عام 2010. اللغة المستخدمة في الدليل سهلة الفهم لغير المتخصصين بالمجال التقني.

الهدف من الدليل هو مساعدة المتخصصين الصحيين على فهم اهمية الحفاظ على خصوصية و سرية و أمن المعلومات الصحية في الملف الطبي الإلكتروني . كذالك مساعدتهم على فهم اهمية اجراء “تحليل المخاطر الأمنية” للأنظمة الإلكترونية المستخدمة في حفظ معلومات المرضى. اخر جزء بالدليل يحتوي على مصادر عديدة يمكن الرجوع لها للباحثين عن معلومات اكثر.

الدليل موجود على الرابط التالي: انقر هنا
الدليل تم تطويرة من قبل مكتب المنسق العام لتقنية المعلومات الصحية والأتحاد الأمريكي لادارة المعلومات الصحية

هنا شرح لدور متخصصي ادارة المعلومات الصحية في سرية و خصوصية و أمن معلومات المرضى: انقر هنا

هنا مثال الوصف الوظيفي لوظيفية ضابط أمن معلومات المرضى: انقر هنا
هنا مثال الوصف الوظيفي لوظيفة ضابط خصوصية معلومات المرضى: انقر هنا 

مصادر اخرى مفيدة تتعلق بالموضوع: انقر هنا

مصادر تتعلق بطرق افشاء المعلومات الخاصة بالمرضى (التقارير الطبية وغيرها) انقر هنا