medical

Why Trust Versus Security and Privacy, Is Holding Back Innovation with Medical Data

Innovation and Medical Data

As healthcare organizations continue to sift through attempt to maximize the potential of the massive collections of health data, trust has become the polarizing topic. Understanding how professionals in the supply chain (doctors, hospitals, insurers) collect, use and disclose health data on an everyday basis, and the potential opportunities to revolutionize healthcare are among the first steps to making the large data sets usable and fostering trust.

Often security and privacy are cited as barriers to using data, but really what regulators and end users are worried about is misuse and abuse of data. It’s not to say security and privacy are not important, but there is an overarching issue of trust that is not adequately addressed. Thought about differently, you can have security and privacy, but these don’t mean as much without building a trusted ecosystem.

How do you build and maintain trust in the world of digital healthcare? And how do you do this in a world where conducting data analysis on large sets of data is crucial to not only revolutionizing healthcare but saving lives? For example, the ability to analyze datasets of pacemakers will have lifesaving capabilities if we can better understand how and why they might malfunction.

What instills trust in humans is not always easy to define. I see trust as the intersection of three components: (1) transparency in provider practices, (2) meaningful engagement with customers, and (3) ethics, that is, focusing on doing the right thing. As it relates to the first component, many organizations are starting to maintain a trust section of their website where they seek to offer greater transparency to customers about their practices. Often visitors will find explanations of how the organization uses data, they share it with, and a code of principles that guide their uses of data on the trust section of the organization’s website which ties into the second component. Trust forms the foundation for effective communication and customer retention and is maintained by small actions over time. It is not so much a matter of technique as it is a reflection of character. Organizations that seek to do business in a truthful, straightforward and authentic way, as opposed to a slick website and expertly-crafted communications that are deceptive, will win over customer trust which is really the essence of the third component of trust.

Further complicating matters in the realm of healthcare, trust has been significantly undermined by imperfect security and privacy measures. Most consumers have lived through a major healthcare data breach and, moreover, many are used to being asked to sign privacy notices often at the time of requiring medical treatment. Not only are patients often incapable of identifying when these notices may mislead them on the uses of their data, they are in no position to dispute the terms of such a notice when it is a pre-condition of receiving medical care. Consumer confidence in the healthcare is at a low given the failure of most healthcare organizations to maintain a semblance of basic trust as it relates to the three pillars described above.

However, the opportunity remains for the industry to galvanize and bring about a new code of trust. A code that, beyond regulatory measures, provides a consistent set of provider practices on how medical data can be used and what anonymization techniques should be applied. Such a code should be built with consumer-digestible explanations and be accompanied by a code of ethics that should span all parts of the supply chain ranging from insurers to hospitals to those that seek to build new services based on medical data. Trust is the cornerstone, the foundation, for everything that an organization or an industry wants to become in the future. My advice to the healthcare industry: take time to lay the groundwork well!

By Evelyn de Souza

Evelyn de Souza

Evelyn de Souza focuses on developing industry blueprints that accelerate secure cloud adoption for business as well as everyday living. She currently serves as the Chair of the newly formed Cloud Security Alliance (CSA) data governance and privacy working group. Evelyn was named to CloudNOW's Top 10 Women in Cloud Computing for 2014 and SVBJ’s 100 Women of Influence for 2015. Evelyn is the co-creator of Cloud Data Protection Cert, the industry's first blueprint for making data protection "business-consumable” and is currently working on a data protection heatmap that attempts to streamline the data privacy landscape.

The Unintended – and Intended – Consequences of Cloud Data Sovereignty

The Unintended – and Intended – Consequences of Cloud Data Sovereignty

Cloud Data Sovereignty It seems that everything has unintended consequences – whether positive or negative. Intended consequences are those that ...
Digital Identity Trends 2017 – Previewing The Year Ahead

Digital Identity Trends 2017 – Previewing The Year Ahead

Digital Identity Trends 2017 The lack of security of the Internet of Things captured public attention this year as massive ...
The Cloudification of Healthcare: Benefits and Risks

The Cloudification of Healthcare: Benefits and Risks

Cloud Healthcare: Benefits and Risks Many organizations are moving most of their business-critical applications and workloads to the cloud. The ...
Machine Learning Explained: Understanding Supervised, Unsupervised, and Reinforcement Learning

Machine Learning Explained: Understanding Supervised, Unsupervised, and Reinforcement Learning

Machine Learning Explained Once we start delving into the concepts behind Artificial Intelligence (AI) and Machine Learning (ML), we come ...
Cloud Migration Strategies and Their Impact on Security and Governance

Cloud Migration Strategies and Their Impact on Security and Governance

Cloud Migration Strategies Public cloud migrations come in different shapes and sizes, but I see three major approaches. Each of ...
What the Dyn DDoS Attacks Taught Us About Cloud-Only EFSS

What the Dyn DDoS Attacks Taught Us About Cloud-Only EFSS

DDoS Attacks October 21st, 2016 went into the annals of Internet history for the large scale Distributed Denial of Service (DDoS) ...
The Virtue of Intelligence in the Cloud

The Virtue of Intelligence in the Cloud

According to a recent IDG survey, about 70% of companies have at least one application in the cloud. An additional 43% want to migrate most, or all, of their data workloads and analytics capabilities to the ...
Netflix subscriber slip hints at 'lumpy' road ahead

Netflix subscriber slip hints at ‘lumpy’ road ahead

(Reuters) - Shares of Netflix Inc fell 13 percent on Tuesday after it reported a surprise shortfall in subscriber additions for a second quarter marked by the lack of a blockbuster new show and the ...
Google hit with record $5 billion EU antitrust fine

Google hit with record $5 billion EU antitrust fine

EU regulators hit Google with a record 4.34 billion euros ($5 billion) antitrust fine on Wednesday for using its Android mobile operating system to squeeze out rivals. The penalty is nearly double the previous record ...