Meaningful Use Stage 3: New Rule Addressing Patient Data Security

There has always been public opinion to Meaningful Use since its six year journey, but now that it has entered the final period of Stage 3, reactions have been strongly voiced over social medias, such as Twitter and Facebook.

Healthcare providers are preparing their systems for interoperability while Stage 3 has come up with changes to existing security requirements.

To address the areas of security concerns, the new rule has been added and directly deals with the security risk attached to patients’ data stored in the EHR and also suggests what healthare providers, clinicians and hospitals can do to mitigate that risk.

Stage 3 has proposed physical safeguards like facility access controls and workstation security and administrative safeguards like risk analysis, risk management, training and contingency plans. Along with technical safeguards, it has become a three way security protection to safeguard the patient information and minimize security hazards as technical safeguards on its own are not enough to reduce risk.

The Stage 3 proposed rule also calls for healthcare organizations to run a security check when they install or upgrade an EHR.

As health care delivery organizations prepare their systems for interoperability, CMS’ Stage 3 proposed rule recommends new procedures that modify the security risk analysis timing and review requirements. … The proposed rule — published March 20 along with the Office of the National Coordinator for Health IT’s 2015 Edition Health IT Certification Criteria proposed rule — attempts to address questions surrounding the security risk assessment of patient data stored. 

Comments are closed.