Are personal health records safe? A review of free web-accessible personal health record privacy policies
- PMID: 22917868
- PMCID: PMC3510685
- DOI: 10.2196/jmir.1904
Are personal health records safe? A review of free web-accessible personal health record privacy policies
Abstract
Background: Several obstacles prevent the adoption and use of personal health record (PHR) systems, including users' concerns regarding the privacy and security of their personal health information.
Objective: To analyze the privacy and security characteristics of PHR privacy policies. It is hoped that identification of the strengths and weaknesses of the PHR systems will be useful for PHR users, health care professionals, decision makers, and designers.
Methods: We conducted a systematic review using the principal databases related to health and computer science to discover the Web-based and free PHR systems mentioned in published articles. The privacy policy of each PHR system selected was reviewed to extract its main privacy and security characteristics.
Results: The search of databases and the myPHR website provided a total of 52 PHR systems, of which 24 met our inclusion criteria. Of these, 17 (71%) allowed users to manage their data and to control access to their health care information. Only 9 (38%) PHR systems permitted users to check who had accessed their data. The majority of PHR systems used information related to the users' accesses to monitor and analyze system use, 12 (50%) of them aggregated user information to publish trends, and 20 (83%) used diverse types of security measures. Finally, 15 (63%) PHR systems were based on regulations or principles such as the US Health Insurance Portability and Accountability Act (HIPAA) and the Health on the Net Foundation Code of Conduct (HONcode).
Conclusions: Most privacy policies of PHR systems do not provide an in-depth description of the security measures that they use. Moreover, compliance with standards and regulations in PHR systems is still low.
Conflict of interest statement
None declared.
Figures
Similar articles
-
Security and privacy in electronic health records: a systematic literature review.J Biomed Inform. 2013 Jun;46(3):541-62. doi: 10.1016/j.jbi.2012.12.003. Epub 2013 Jan 8. J Biomed Inform. 2013. PMID: 23305810
-
How lived experiences of illness trajectories, burdens of treatment, and social inequalities shape service user and caregiver participation in health and social care: a theory-informed qualitative evidence synthesis.Health Soc Care Deliv Res. 2025 Jun;13(24):1-120. doi: 10.3310/HGTQ8159. Health Soc Care Deliv Res. 2025. PMID: 40548558
-
Cost-effectiveness of using prognostic information to select women with breast cancer for adjuvant systemic therapy.Health Technol Assess. 2006 Sep;10(34):iii-iv, ix-xi, 1-204. doi: 10.3310/hta10340. Health Technol Assess. 2006. PMID: 16959170
-
Home treatment for mental health problems: a systematic review.Health Technol Assess. 2001;5(15):1-139. doi: 10.3310/hta5150. Health Technol Assess. 2001. PMID: 11532236
-
Risk of thromboembolism in patients with COVID-19 who are using hormonal contraception.Cochrane Database Syst Rev. 2023 Jan 9;1(1):CD014908. doi: 10.1002/14651858.CD014908.pub2. Cochrane Database Syst Rev. 2023. Update in: Cochrane Database Syst Rev. 2023 May 15;5:CD014908. doi: 10.1002/14651858.CD014908.pub3. PMID: 36622724 Free PMC article. Updated.
Cited by
-
Patient-centeredness and quality management in Dutch diabetes care organizations after a 1-year intervention.Patient Prefer Adherence. 2016 Oct 4;10:1957-1966. doi: 10.2147/PPA.S117388. eCollection 2016. Patient Prefer Adherence. 2016. PMID: 27784994 Free PMC article.
-
Assessing Commercially Available Personal Health Records for Home Health: Recommendations for Design.Appl Clin Inform. 2016 May 18;7(2):355-67. doi: 10.4338/ACI-2015-11-RA-0156. eCollection 2016. Appl Clin Inform. 2016. PMID: 27437046 Free PMC article.
-
Sizing Prenatal mPHRs using COSMIC Measurement Method.J Med Syst. 2019 Sep 14;43(10):319. doi: 10.1007/s10916-019-1446-7. J Med Syst. 2019. PMID: 31522305
-
Functionalities and Issues in the Implementation of Personal Health Records: Systematic Review.J Med Internet Res. 2021 Jul 21;23(7):e26236. doi: 10.2196/26236. J Med Internet Res. 2021. PMID: 34287210 Free PMC article.
-
Free Web-based personal health records: an analysis of functionality.J Med Syst. 2013 Dec;37(6):9990. doi: 10.1007/s10916-013-9990-z. Epub 2013 Nov 13. J Med Syst. 2013. PMID: 24221916
References
-
- Liu LS, Shih PC, Hayes GR. Barriers to the adoption and use of personal health record systems. Proceedings of the iConference; iConference; Feb 8-11, 2011; Seattle, WA, USA. New York, NY: ACM; 2011. pp. 363–70. - DOI
-
- US Department of Health and Human Services, Office for Civil Rights. 2008. Dec 15, [2011-08-05]. Personal Health Records and the HIPAA Privacy Rule http://www.hhs.gov/ocr/privacy/hipaa/understanding/special/healthit/phrs....
-
- Fernandez-Luque L, Karlsen R, Bonander J. Review of extracting information from the Social Web for health personalization. J Med Internet Res. 2011 Jan;13(1):e15. doi: 10.2196/jmir.1432. http://www.jmir.org/2011/1/e15/v13i1e15 - DOI - PMC - PubMed
-
- Tang PC, Ash JS, Bates DW, Overhage JM, Sands DZ. Personal health records: definitions, benefits, and strategies for overcoming barriers to adoption. J Am Med Inform Assoc. 2006 Apr;13(2):121–6. doi: 10.1197/jamia.M2025. http://jamia.bmj.com/cgi/pmidlookup?view=long&pmid=16357345M2025 - DOI - PMC - PubMed
-
- Adida B, Kohane IS. GenePING: secure, scalable management of personal genomic data. BMC Genomics. 2006 Apr;7:93. doi: 10.1186/1471-2164-7-93. http://www.biomedcentral.com/1471-2164/7/931471-2164-7-93 - DOI - PMC - PubMed
Publication types
MeSH terms
LinkOut - more resources
Full Text Sources
Medical
Miscellaneous
