It is good to see that social media and eHealth are becoming mainstream topics at national health conferences. At the recent GP Education & Training Conference in Perth (GPET13) I attended two workshops about our professional online presence.
The first one was about the benefits of social media and was attended by GP supervisors, registrars and students. The second one, sponsored by a medical defence organisation, warned about the dangers of the online world, and interestingly there were mainly GP supervisors in the room.
Before I continue I must declare that I was one of the presenters at the first workshop. But it was good to be reminded by professor Stephen Trumble about what can go wrong. His excellent presentation created a lively discussion. Here are seven random points I took home from the workshop:
Doctors should be careful when looking up patients online, eg via Google. In general this is only acceptable if doctors are acting in the interest of patients, for example when trying to find contact information in an emergency.
Privacy settings of Facebook and other social media tools may change or fail, therefore: do not trust these settings. Assume that everything posted online, even in private networks and groups, is public. I have blogged about the elevator test, which is one way to check if something is suitable before posting.
Taking pictures of patients or their body parts is fine as long as the patient has been made aware of the purpose and who will see the picture, has given consent prior to taking the picture and has been de-identified. When doctors publish the picture online, consent must be noted within the publication. If the picture is later used for other purposes, the patient must again give consent.
When doctors collect patient information on their mobile devices, eg when taking a picture with a smart phone or when using a transcription service, these devices must be protected from misuse, unauthorised access, alteration or disclosure. The simple passcode on iPhones is generally deemed insecure (but can be made more secure in the phone settings). If patient information is stored overseas on cloud systems, local security laws apply and they may not meet Australian standards.
Old smart phones, even if factory settings have been restored and the data erased, still contain information. This is of course also true for USB sticks, practice computers, photocopiers with a hard disc etc.
I have blogged about the issues with Skype in patient care. From the handout: “Skype is not recommended for telehealth consultations but has not been deemed ‘unsuitable’. There are privacy, confidentiality and quality issues and many doctors who start with Skype end up upgrading to commercial systems.”
Last but not least: email is not suitable to transfer patient information. Encrypted email is the preferred option.
It is sad that the eHealth practice incentive payments (PIP) by the government are only paid to practices taking part in the PCEHR. As a result costly software, system and security upgrades will not be a budget priority for many practices.
- Online communication for education: risks, responsibilities and rewards. Workshop by Prof Stephen Trumble, Ms Nicole Harvey. GPET 13 Conference, Perth
- General professionalism online – handout by MDA National
- Informed consent and Telehealth – handout by MDA National
- Telehealth tips – handout by MDA National