Adoption of security and confidentiality features in an operational community health information network: the Comox Valley experience--case example.

Since 1993, a budding community health information network (CHIN) has been in operation in the Comox Valley in Canada. A general hospital and three multi-doctor clinics are linked electronically. The clinics operate without paper charts using a comprehensive clinic information system. The link is provided by RSALink, a commercial message exchange service, based on Health Link, a system developed at the University of Victoria (McDaniel et al., Can. Med. Inform. 1 (1994) 40-41; McDaniel, Dissertation, University of Victoria, Canada, 1994). Health Link is a highly adaptable message exchange service with rich functionality. Despite this, the system is used exclusively to receive laboratory results transmitted by the hospital's laboratory system (RSAStat). The results are deposited in the patient data base of a commercial clinic information system (CliniCare). This case is instructive because the users' selection of services available through Health Link allows us to observe the preferences in this informational sophisticated environment. Laboratory data transmission is appreciated as highly beneficial. The reliability, security and ample privacy protection and authentication features of Health Link, in contrast, are used in a black box mode and are not consciously exploited. This is consistent with our experience of the use of other systems which have operated for a substantial time, essentially without serious protection features. Our experience suggests that security and confidentiality features are exploited only to the extent that they do not require additional effort or conscientious intervention. This puts the system provider in the difficult position of either offering interactive systems that nobody will use, or providing automated features that nobody is aware of and that are therefore not used to full advantage--if at all.