Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data

Recent findings have shown that the continued expansion of the scope and scale of data collected in electronic health records are making the protection of personally identifiable information (PII) more challenging and may inadvertently put our institutions and patients at risk if not addressed. As c...

Descripción completa

Detalles Bibliográficos
Autores principales: Pfaff, Emily R., Haendel, Melissa A., Kostka, Kristin, Lee, Adam, Niehaus, Emily, Palchuk, Matvey B., Walters, Kellie, Chute, Christopher G.
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Cambridge University Press 2021
Materias:
Special Communications
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8826001/
https://www.ncbi.nlm.nih.gov/pubmed/35211336
http://dx.doi.org/10.1017/cts.2021.880
_version_ 1784647342734966784
author Pfaff, Emily R.
Haendel, Melissa A.
Kostka, Kristin
Lee, Adam
Niehaus, Emily
Palchuk, Matvey B.
Walters, Kellie
Chute, Christopher G.
author_facet Pfaff, Emily R.
Haendel, Melissa A.
Kostka, Kristin
Lee, Adam
Niehaus, Emily
Palchuk, Matvey B.
Walters, Kellie
Chute, Christopher G.
author_sort Pfaff, Emily R.
collection PubMed
description Recent findings have shown that the continued expansion of the scope and scale of data collected in electronic health records are making the protection of personally identifiable information (PII) more challenging and may inadvertently put our institutions and patients at risk if not addressed. As clinical terminologies expand to include new terms that may capture PII (e.g., Patient First Name, Patient Phone Number), institutions may start using them in clinical data capture (and in some cases, they already have). Once in use, PII-containing values associated with these terms may find their way into laboratory or observation data tables via extract-transform-load jobs intended to process structured data, putting institutions at risk of unintended disclosure. Here we aim to inform the informatics community of these findings, as well as put out a call to action for remediation by the community.
format Online
Article
Text
id pubmed-8826001
institution National Center for Biotechnology Information
language English
publishDate 2021
publisher Cambridge University Press
record_format MEDLINE/PubMed
spelling pubmed-88260012022-02-23 Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data Pfaff, Emily R. Haendel, Melissa A. Kostka, Kristin Lee, Adam Niehaus, Emily Palchuk, Matvey B. Walters, Kellie Chute, Christopher G. J Clin Transl Sci Special Communications Recent findings have shown that the continued expansion of the scope and scale of data collected in electronic health records are making the protection of personally identifiable information (PII) more challenging and may inadvertently put our institutions and patients at risk if not addressed. As clinical terminologies expand to include new terms that may capture PII (e.g., Patient First Name, Patient Phone Number), institutions may start using them in clinical data capture (and in some cases, they already have). Once in use, PII-containing values associated with these terms may find their way into laboratory or observation data tables via extract-transform-load jobs intended to process structured data, putting institutions at risk of unintended disclosure. Here we aim to inform the informatics community of these findings, as well as put out a call to action for remediation by the community. Cambridge University Press 2021-12-09 /pmc/articles/PMC8826001/ /pubmed/35211336 http://dx.doi.org/10.1017/cts.2021.880 Text en © The Author(s) 2021 https://creativecommons.org/licenses/by/4.0/This is an Open Access article, distributed under the terms of the Creative Commons Attribution licence (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted re-use, distribution, and reproduction in any medium, provided the original work is properly cited.
spellingShingle Special Communications
Pfaff, Emily R.
Haendel, Melissa A.
Kostka, Kristin
Lee, Adam
Niehaus, Emily
Palchuk, Matvey B.
Walters, Kellie
Chute, Christopher G.
Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title_full Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title_fullStr Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title_full_unstemmed Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title_short Ensuring a safe(r) harbor: Excising personally identifiable information from structured electronic health record data
title_sort ensuring a safe(r) harbor: excising personally identifiable information from structured electronic health record data
topic Special Communications
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8826001/
https://www.ncbi.nlm.nih.gov/pubmed/35211336
http://dx.doi.org/10.1017/cts.2021.880
work_keys_str_mv AT pfaffemilyr ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT haendelmelissaa ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT kostkakristin ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT leeadam ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT niehausemily ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT palchukmatveyb ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT walterskellie ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata
AT chutechristopherg ensuringasaferharborexcisingpersonallyidentifiableinformationfromstructuredelectronichealthrecorddata

Ejemplares similares