• Government
• Profession
• Business
• Opinion
• Health

• Health reform
• H1N1
• P4P
• EMRs
• Medicare
• Liability
• AMA House
• » More

• Book Excerpt
• Business Pitch
• Meetings
• » More

• Contract Language
• Ethics Forum
• In the Courts
• Practice Management
• Technically Speaking
• » More

• Issue dates
• Regions
• Health plans
• Sections
• News briefs
• Columns
• Editorials
• Letters
• Writers
• Other years

• Search tips
• E-mail alert
• Radio
• RSS
• Mobile
• Subscribe
• Institutions
• Staff directory
• Advertising
• Permissions
• Reprints
• News media
• Site guide
• Useful links
• About
• Premium
• Contact

Before you transmit, make sure patient data are secure

Contract Language. By Steven M. Harris, amednews contributor. Feb. 6, 2006.

• PRINT|
• E-MAIL|
• RESPOND|
• REPRINTS|
• SHARE

CONTRACT LANGUAGE

A column examining the ins and outs of contract issues

SEE ARCHIVES

You might have come across, in your contracts for laboratory or technical services, something called an "interface agreement."

An interface agreement structures how laboratory test orders and results will be communicated and transmitted between the physician's computer system and the laboratory service provider's system. For example, recently a physician practice client had me review such an agreement as part of a contract involving phlebotomy services.

In the past, transmission of patient information by e-mail or online most often was addressed in the actual service or provider agreement. But as state and federal health care regulations have evolved on the protection of patient information, physicians have had to balance the convenience of transmitting and receiving patient information, including lab results, in "real time" with the responsibility of protecting patient information from unauthorized disclosure.

In light of state and federal regulations, including the security requirements of the Health Insurance Portability and Accountability Act of 1996, interface agreements are being broken off into their own section. Physicians should read them carefully to make sure it's spelled out exactly how patient information will be protected and secured from unauthorized disclosure to third parties.

This column highlights key areas you should consider before signing an interface agreement including: practice group responsibilities, error/virus reporting, term and termination, limitation of liability and exclusion of damages, and compliance with laws.