Analysis of An Online Health Social Network. Ma, Chen, G., & Xiao, J. 1st ACM International Health Informatics Symposium. Website abstract bibtex In recent years, there has been growing demand by patients for
access to their own health information via tools like Personal
Health Records [1]. The Markle Foundation [2] defines the
Personal Health Record (PHR) as an electronic application
through which individuals can access, manage and share their
health information in a secure and confidential environment.
PHRs are emerging and consolidating as an effective tool for
patients to maintain their own health-related information.
Healthcare Organizations (HCOs) and e-health services covered
by HIPAA face the problem of implementing effective and cost-
efficient security and privacy policies, while constantly
demonstrating compliance with HIPAA regulations. To this end,
HCOs must implement system-wide policies, standards,
guidelines and procedures for safeguarding the organization's
information including Electronic Medical Records (EMR) and
Electronic Health Records (EHR), in conjunction with HIPAA
mandates [3]. Similar security and privacy issues also apply to
PHRs, as patient information must be protected under HIPAA
regulatory requirements. PHR applications were initially provided
by single vendors as a module (with limited functionality) within
a Hospital Information System (HIS). But with growing use of
Web 2.0 technologies, PHRs have also evolved as web-based
solutions provided by business parties, leveraging "anywhere
anytime" accessibility made possible by the internet. Although
business third parties providing PHR solutions are not subject to
HIPAA regulations, nonetheless security and privacy for PHRs
are critical issues - both for the patients using the PHR and for the
providers themselves. In this context, this paper focuses on
existing PHR applications and functions, classification of PHRs
based on their business and technical environments, privacy
features, privacy policies and coverage, and privacy policy
notification issues. Furthermore, in order to verify privacy policy
coverage and notifications offered by web-based PHRs, an
evaluation of such privacy policies against already established
and well-researched evaluation criteria was conducted.
@article{
title = {Analysis of An Online Health Social Network},
type = {article},
keywords = {osn,privacy,user-study},
websites = {http://www.cs.uml.edu/~glchen/papers/fatsecret-ihi10.pdf},
id = {23e02b27-8786-33b4-8cbe-3ca8694e03a9},
created = {2018-07-12T21:31:23.102Z},
file_attached = {false},
profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},
group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},
last_modified = {2018-07-12T21:31:23.102Z},
read = {false},
starred = {false},
authored = {false},
confirmed = {true},
hidden = {false},
citation_key = {martino-phr},
source_type = {article},
private_publication = {false},
abstract = {In recent years, there has been growing demand by patients for
access to their own health information via tools like Personal
Health Records [1]. The Markle Foundation [2] defines the
Personal Health Record (PHR) as an electronic application
through which individuals can access, manage and share their
health information in a secure and confidential environment.
PHRs are emerging and consolidating as an effective tool for
patients to maintain their own health-related information.
Healthcare Organizations (HCOs) and e-health services covered
by HIPAA face the problem of implementing effective and cost-
efficient security and privacy policies, while constantly
demonstrating compliance with HIPAA regulations. To this end,
HCOs must implement system-wide policies, standards,
guidelines and procedures for safeguarding the organization's
information including Electronic Medical Records (EMR) and
Electronic Health Records (EHR), in conjunction with HIPAA
mandates [3]. Similar security and privacy issues also apply to
PHRs, as patient information must be protected under HIPAA
regulatory requirements. PHR applications were initially provided
by single vendors as a module (with limited functionality) within
a Hospital Information System (HIS). But with growing use of
Web 2.0 technologies, PHRs have also evolved as web-based
solutions provided by business parties, leveraging "anywhere
anytime" accessibility made possible by the internet. Although
business third parties providing PHR solutions are not subject to
HIPAA regulations, nonetheless security and privacy for PHRs
are critical issues - both for the patients using the PHR and for the
providers themselves. In this context, this paper focuses on
existing PHR applications and functions, classification of PHRs
based on their business and technical environments, privacy
features, privacy policies and coverage, and privacy policy
notification issues. Furthermore, in order to verify privacy policy
coverage and notifications offered by web-based PHRs, an
evaluation of such privacy policies against already established
and well-researched evaluation criteria was conducted.},
bibtype = {article},
author = {Ma, undefined and Chen, Guanling and Xiao, Juntao},
journal = {1st ACM International Health Informatics Symposium}
}
Downloads: 0
{"_id":"qihTHv9GrTZLQxYrb","bibbaseid":"ma-chen-xiao-analysisofanonlinehealthsocialnetwork","downloads":0,"creationDate":"2019-02-15T15:14:58.949Z","title":"Analysis of An Online Health Social Network","author_short":["Ma","Chen, G.","Xiao, J."],"year":null,"bibtype":"article","biburl":null,"bibdata":{"title":"Analysis of An Online Health Social Network","type":"article","keywords":"osn,privacy,user-study","websites":"http://www.cs.uml.edu/~glchen/papers/fatsecret-ihi10.pdf","id":"23e02b27-8786-33b4-8cbe-3ca8694e03a9","created":"2018-07-12T21:31:23.102Z","file_attached":false,"profile_id":"f954d000-ce94-3da6-bd26-b983145a920f","group_id":"b0b145a3-980e-3ad7-a16f-c93918c606ed","last_modified":"2018-07-12T21:31:23.102Z","read":false,"starred":false,"authored":false,"confirmed":"true","hidden":false,"citation_key":"martino-phr","source_type":"article","private_publication":false,"abstract":"In recent years, there has been growing demand by patients for \naccess to their own health information via tools like Personal \nHealth Records [1]. The Markle Foundation [2] defines the \nPersonal Health Record (PHR) as an electronic application \nthrough which individuals can access, manage and share their \nhealth information in a secure and confidential environment. \nPHRs are emerging and consolidating as an effective tool for \npatients to maintain their own health-related information. \nHealthcare Organizations (HCOs) and e-health services covered \nby HIPAA face the problem of implementing effective and cost-\nefficient security and privacy policies, while constantly \ndemonstrating compliance with HIPAA regulations. To this end, \nHCOs must implement system-wide policies, standards, \nguidelines and procedures for safeguarding the organization's \ninformation including Electronic Medical Records (EMR) and \nElectronic Health Records (EHR), in conjunction with HIPAA \nmandates [3]. Similar security and privacy issues also apply to \nPHRs, as patient information must be protected under HIPAA \nregulatory requirements. PHR applications were initially provided \nby single vendors as a module (with limited functionality) within \na Hospital Information System (HIS). But with growing use of \nWeb 2.0 technologies, PHRs have also evolved as web-based \nsolutions provided by business parties, leveraging \"anywhere \nanytime\" accessibility made possible by the internet. Although \nbusiness third parties providing PHR solutions are not subject to \nHIPAA regulations, nonetheless security and privacy for PHRs \nare critical issues - both for the patients using the PHR and for the \nproviders themselves. In this context, this paper focuses on \nexisting PHR applications and functions, classification of PHRs \nbased on their business and technical environments, privacy \nfeatures, privacy policies and coverage, and privacy policy \nnotification issues. Furthermore, in order to verify privacy policy \ncoverage and notifications offered by web-based PHRs, an \nevaluation of such privacy policies against already established \nand well-researched evaluation criteria was conducted.","bibtype":"article","author":"Ma, undefined and Chen, Guanling and Xiao, Juntao","journal":"1st ACM International Health Informatics Symposium","bibtex":"@article{\n title = {Analysis of An Online Health Social Network},\n type = {article},\n keywords = {osn,privacy,user-study},\n websites = {http://www.cs.uml.edu/~glchen/papers/fatsecret-ihi10.pdf},\n id = {23e02b27-8786-33b4-8cbe-3ca8694e03a9},\n created = {2018-07-12T21:31:23.102Z},\n file_attached = {false},\n profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},\n group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},\n last_modified = {2018-07-12T21:31:23.102Z},\n read = {false},\n starred = {false},\n authored = {false},\n confirmed = {true},\n hidden = {false},\n citation_key = {martino-phr},\n source_type = {article},\n private_publication = {false},\n abstract = {In recent years, there has been growing demand by patients for \naccess to their own health information via tools like Personal \nHealth Records [1]. The Markle Foundation [2] defines the \nPersonal Health Record (PHR) as an electronic application \nthrough which individuals can access, manage and share their \nhealth information in a secure and confidential environment. \nPHRs are emerging and consolidating as an effective tool for \npatients to maintain their own health-related information. \nHealthcare Organizations (HCOs) and e-health services covered \nby HIPAA face the problem of implementing effective and cost-\nefficient security and privacy policies, while constantly \ndemonstrating compliance with HIPAA regulations. To this end, \nHCOs must implement system-wide policies, standards, \nguidelines and procedures for safeguarding the organization's \ninformation including Electronic Medical Records (EMR) and \nElectronic Health Records (EHR), in conjunction with HIPAA \nmandates [3]. Similar security and privacy issues also apply to \nPHRs, as patient information must be protected under HIPAA \nregulatory requirements. PHR applications were initially provided \nby single vendors as a module (with limited functionality) within \na Hospital Information System (HIS). But with growing use of \nWeb 2.0 technologies, PHRs have also evolved as web-based \nsolutions provided by business parties, leveraging \"anywhere \nanytime\" accessibility made possible by the internet. Although \nbusiness third parties providing PHR solutions are not subject to \nHIPAA regulations, nonetheless security and privacy for PHRs \nare critical issues - both for the patients using the PHR and for the \nproviders themselves. In this context, this paper focuses on \nexisting PHR applications and functions, classification of PHRs \nbased on their business and technical environments, privacy \nfeatures, privacy policies and coverage, and privacy policy \nnotification issues. Furthermore, in order to verify privacy policy \ncoverage and notifications offered by web-based PHRs, an \nevaluation of such privacy policies against already established \nand well-researched evaluation criteria was conducted.},\n bibtype = {article},\n author = {Ma, undefined and Chen, Guanling and Xiao, Juntao},\n journal = {1st ACM International Health Informatics Symposium}\n}","author_short":["Ma","Chen, G.","Xiao, J."],"urls":{"Website":"http://www.cs.uml.edu/~glchen/papers/fatsecret-ihi10.pdf"},"bibbaseid":"ma-chen-xiao-analysisofanonlinehealthsocialnetwork","role":"author","keyword":["osn","privacy","user-study"],"downloads":0},"search_terms":["analysis","online","health","social","network","ma","chen","xiao"],"keywords":["osn","privacy","user-study"],"authorIDs":[]}