QS/1, iMedicare form deal to help patients find Medicare plans
SPARTANBURG, S.C. — Healthcare automation services company QS/1 has a deal with the maker of an iPad app for Medicare patients to help users search for and compare health plans.
QS/1 announced the partnership with iMedicare to help pharmacies serve the country’s growing number of Medicare patients.
"Using government resources, comparing plans can take up to 40 minutes," iMedicare CEO Flaviu Simihaian said. "When integrated with QS/1’s Pharmacy Management System, iMedicare can do that comparison in a matter of seconds."
The iMedicare app uses existing customer information in the QS/1 system to populate the necessary fields, allowing pharmacies to help more patients reduce their search times.
"There are thousands of seniors enrolling in Medicare every day," QS/1 president Tammy Devine said. "iMedicare is a valuable resource that allows pharmacies to present plan options for that specific person."
The HIPAA privacy rule: A decade of enforcement
In April 2003, the U.S. Department of Health and Human Services, or HHS, Office for Civil Rights, or OCR, began enforcing the Health Insurance Portability and Accountability Act, commonly known as HIPAA. Now, a decade later, we can look at how the rule is being applied.
Facts and figures
As of press time, HHS had received a total of almost 80,000 HIPAA complaints. Of those, more than 44,000 were dismissed, more than 19,000 were investigated and resolved with changes to privacy practice, and more than 9,000 were investigated and no violation was found. Investigations were conducted against many types of entities, including national pharmacy chains, major medical centers, group health plans, hospitals and small provider offices. According to HHS, private medical practices were the ones most often required to take corrective action as a result of enforcement, followed by general hospitals. With the exception of 2009, HIPAA complaints have been increasing annually. In 2011, there were more than 9,000 complaints received.
According to HHS, the compliance issues investigated most frequently are, in order:
- Impermissible use and disclosure of protected health information;
- Lack of safeguards for protected health information;
- Lack of patient access to their own protected health information;
- Use or disclosure of more than the minimum necessary protected health information; and,
- Lack of administrative safeguards of electronic protected health information.
Typically, complaints are resolved by the covered entity (i.e., hospital, pharmacy, health plan or medical practice) instituting new procedures to ensure patient privacy, training or retraining staff, censuring or dismissing staff, and making policy changes to protect electronic data. Often settlements also include monetary payments. Some recent examples of enforcement actions include the following:
- A grocery store-based pharmacy chain kept its pseudoephedrine log books, which contained protected health information, in such a way that the protected information was visible to the public at the pharmacy counter. The pharmacy chain was required to implement national policies and procedures to safeguard the information in the log books and to train all staff on the new policy.
- A pharmacy employee placed a patient’s insurance card in another patient’s prescription bag. OCR held that insurance cards contain protected health information and need to be safeguarded. The pharmacy was required to revise its policies and retrain its staff.
- A nurse and orderly in a state hospital discussed the HIV/AIDS status of a patient and patient’s spouse within earshot of other patients without making any effort to prevent the disclosure. Both employees were put on leave, disciplined, given a year of probation, referred for peer review and given more HIPAA privacy training. A monetary settlement was given to the patient.
- A nurse practitioner working in a multi-hospital healthcare system impermissibly accessed the medical records of her ex-husband. The health system terminated the nurse practitioner’s access to the electronic records system, reported her conduct to the licensing authority and provided her with remedial privacy rule training.
Use caution with personal health information
To avoid HIPAA privacy issues, it’s wise to treat patient records as you would want your own private records treated. In other words:
- Don’t share private information unless necessary;
- Properly safeguard electronic records;
- Don’t access records for patients who you are not actively treating; and
- Don’t casually talk about patients in front of other patients or customers.
Stay tuned for the next law column, which will cover frequently asked questions about the HIPAA privacy rule.
Ann W. Latner, JD, a former criminal defense attorney, is a freelance medical writer in Port Washington, N.Y.
Avandia could remain available following FDA advisory committee vote
PHILADELPHIA — A joint Food and Drug Administration expert panel voted to recommend keeping a controversial GlaxoSmithKline diabetes drug available for certain patients, GSK said.
The drug maker said that in a vote on the drug Avandia (rosiglitazone), a majority of the FDA’s Endocrinologic and Metabolic Drugs Advisory Committee and Drug Safety and Risk Management Advisory Committee members — 13 and seven, respectively — voted to modify or remove the drug’s safety protocol, known as a risk evaluation and mitigation strategy, or REMS. REMS are used for drugs that are approved by the FDA but may pose a safety risk to patients. Five members voted to keep the REMS, while one voted to remove Avandia from the market.
The vote was based on a reevaluation of GSK’s 2009 RECORD study, and the FDA will take it into consideration when it decides whether or not to maintain the current safety protocol for Avandia, which will continue to be available through the REMS program. The second analysis of the RECORD study indicated Avandia may not carry higher risk of heart attacks than other diabetes medications.
"We appreciate the committee’s thorough examination of the RECORD results and will continue to work with the FDA as it considers the recommendations of the committee," GSK chief medical officer James Shannon said. "We continue to believe that Avandia is a safe and effective treatment option for Type 2 diabetes when used for the appropriate patient and in accordance with labeling."
The controversy surrounding Avandia goes back to 2010, when the FDA moved to significantly restrict access to the drug — once a top-selling Type 2 diabetes drug on the market — in response to a 2007 study suggesting its use could increase the risk of heart attacks and strokes. The drug was made available only to patients if they could not control their blood-sugar levels with Takeda’s Actos (pioglitazone), a drug that belongs to the same class as Avandia. Meanwhile, regulators in the European Union banned the drug altogether.
In January 2011, GSK took a legal charge of $3.4 billion related to an investigation by the U.S. Attorney’s Office for the District of Colorado alleging that it continued selling and promoting the drug in spite of reports of its cardiovascular risks, and the drug’s labeling was revised a month later. In November 2011, Avandia was pulled from retail pharmacy shelves and made available only by mail order from specially certified pharmacies.