HITPC approves recommendations that drive better understanding of big data's privacy issues

More understanding of the privacy and security issues surrounding big data is needed to advance a learning healthcare system, according to the Health IT Policy Committee’s Privacy & Security Work Group. Stanley Crosley, of Drinker Biddle & Reath law firm and co-chair of the group, presented the work group’s recommendations to the committee during its Aug. 11 meeting. The group encourages the Office of the National Coordinator for Health IT (ONC) and other federal stakeholders to hold more public inquiries to increase understanding. “There is a lot of conversation around privacy but understanding much of the harm we’re trying to prevent still remains elusive,” Crosley said. “It would benefit policymakers to know more about the harms consumers are concerned about and make sure they’re taking steps to address those harms.”

The work group also is pushing voluntary codes of conduct, Crosley said, but they have to be credible and include transparency and accountability. “Along with that, we believe this will only work if there is good dialogue between the [Department of Health and Human Services], the FTC and other federal regulatory groups and other stakeholders developing these codes as they quickly establish the rules of the road.” In its report, the work group also added consideration of the use of community risk assessment review boards as part of process, Crosley said. “We see that as a potential way to improve a code of conduct that may not in itself be strenuous enough.