The NHS is currently undergoing a transformation, which once completed will give place to a new, leaner and more efficient healthcare landscape. With limited financial resources and having to meet the growing needs of an ageing population, many NHS trusts are struggling, some have gone into administration, such as South London Healthcare NHS Trust, with more to follow suit.
Whilst many refuse to accept this and fight to keep the current status quo, the fact is that these irrevocable changes will happen. The government, having to reduce its own deficit and cutting back in all areas, no longer has the financial means to bail those trusts out nor to prop up a healthcare system that is no longer viable.
A commercial market
Current reforms, including the introduction of GP commissioning as well as meeting the government’s £20 billion efficiency target over the next four years, mean that NHS trusts are now operating in a more competitive environment. I would go as far as arguing that the healthcare environment is becoming a commercial marketplace with various providers competing against each other.
This is a tectonic shift in the history of the NHS: the rules of engagement are changing and as a consequence only the strongest, most agile and financially viable organisations will survive.
In order to succeed in this new emerging NHS, healthcare leaders must encourage a shift in their organisation’s culture, which needs to be more tuned to the commercial world. Providers must put in place a sound economic plan that will provide them with a cost structure that not only enables productivity but also creates revenues. Importantly in the context of the Francis report into the Mid Staffordshire NHS Trust, providers need to demonstrate leadership and provide workforce with a vision to attract and retain the right people.
Visionary healthcare providers have already understood that in order to meet budgetary mandates as well as respond to new competitive market-place dynamics, they have to embrace the government’s ambitious digital plans of a paperless NHS by 2018.
They understand that there is no alternative option but to adopt electronic health records as this is their only chance to fundamentally reduce the cost structure in which they provide their services, while improving care for patients and helping to tackle the challenge of an ageing population and increasing incidence of long term conditions. Those visionary providers have also acknowledged that key to the success of the paperless NHS vision, is the tenet of privacy and security as a fundamental underpinning to protect the reputation and integrity of their brand.
Reputation management
In other words, to stay competitive and flourish in this new market where reputation is everything, NHS healthcare providers have to learn to manage, promote and protect their brand. Reputation is a precious and fragile asset, quickly and easily damaged by media coverage of any failure. Rebuilding a lost reputation is a slow and difficult process and it is therefore essential for providers to safeguard their reputations and maintain the trust of patients and the confidence of clinical commissioning groups in order to compete for their "business" with other NHS and non NHS health providers.
At the core of a good reputation is the respect of certain values and principles such as integrity, transparency, accountability, security and privacy. In a world that is increasingly becoming digital, security and privacy are mandated business assets, tied to the reputation and the quality of how a business is run.
With more information stored and shared electronically, and with patients fast becoming discerning consumers of healthcare and taking a more active role in making use of their own health records, patient privacy becomes more of an issue. In fact privacy has become the cornerstone of electronic healthcare.
The healthcare providers who will succeed in the new NHS, where electronic records and patient-focused commissioning are the norm, will be those who introduce best-in-class privacy and data protection measures. Our experience in the US and Europe demonstrate that those providers, who have the best privacy plans in place are always those who are the most successful.
A Blueprint for privacy
Privacy issues are best dealt with on a strategic, holistic and planned basis, rather than piecemeal or in response to crises. By working to a blueprint it is possible to stay ahead of the curve - compliant with present and forthcoming regulations and providing security standards, which give confidence to patients, clinicians and commissioning groups.
It is vital that healthcare leaders put plans and processes in place to ensure that information is secure against unauthorised access and modification. Responsibility for data protection needs to be given to specific named staff and all staff have to be trained and competent in privacy issues.
Practically, healthcare systems need to be designed and organised with security to fit the nature of the personal data held and the harm that may result from a security breach. Information must be monitored for inappropriate accessing and automated privacy monitoring has to be introduced as it addresses the problem very effectively by providing fast, effective, resource-light and automated comprehensive auditing. In order to be fully effective though, this requires healthcare organisations to insist that vendors supply fully enabled audit logs within their IT systems.
Good privacy underpins provider success
Forward thinking healthcare providers such as NHS Scotland, are already moving ahead at some pace to deploy privacy enhancing technology and procedures. The rest of the NHS needs to follow this lead, as it moves towards creating comprehensive electronic records. This can be achieved by drawing on the experiences of providers in healthcare markets such as Scotland, the US and other parts of Europe that have already travelled this path.
Those providers that see implementing best-in-class privacy measures as crucial will be able to deliver effective and efficient care, attract patients and secure contracts. Those who do not will be dangerously exposed in a healthcare market where reputation means everything and where only the strongest will prosper.
About FairWarning
FairWarning® is the inventor and global leader in software solutions which monitor and protect patient privacy in electronic health records, enabling healthcare providers and health information exchanges to confidentially connect physicians, clinics, patients and affiliates. FairWarning®'s privacy auditing solutions are compatible with healthcare applications from every major vendor, and available as either on-premise or software-as-a-service, with managed services available to complement existing resources. Customers consider FairWarning® privacy auditing solutions essential for compliance with healthcare privacy regulations such as ARRA HITECH privacy and meaningful use criteria, HIPAA, EU Data Protection, UK Freedom of Information Act, California SB 541 and AB 211, Texas HB 300, and Canadian provincial healthcare privacy law.