The 21st Century Cures Act aims to achieve interoperability with APIs that provide "access to all data elements of a patient’s electronic health record to the extent permissible under applicable privacy laws" -- but ONC's proposed APIs are limited only to a "core" data set, rather than enabling "all data elements":
strictly for the scope of the API Condition of Certification, we propose to interpret the meaning of the phrase “all data elements of a patient’s electronic health record” as follows...
[T]he proposed § 170.315(g)(10) certification criterion... would facilitate API access to a limited set of data elements...
Accordingly, for the purposes of meeting this portion of the Cures Act’s API Condition of Certification, we interpret the scope of: the ARCH; its associated implementation specifications; and the policy expressed around the data elements that must be supported by (g)(10)-certified APIs (i.e., FHIR servers) to constitute “all data elements.”
Somehow, ONC has explicitly interpreted "all data elements" to mean "a limited set of data elements".
ONC's interpretation misses the mark established by Cures, and fortunately there's a way to remedy the situation with a small tweak to ONC's proposed rule.
Entirely separate from API access, ONC has proposed a certification requirement for the export of a patient's complete electronic health information (EHI). Under ONC's proposal:
- a patient (or authorized representative) can request that an export be performed
- the scope of data is "all the EHI that the health IT system produces and electronically manages" about the patient, from across the EHR's "entire database, including but not limited to clinical, administrative, and claims/billing data"
- results must be "timely" and must not require manual intervention (though they may not be immediate)
- eventually, export file(s) will be delivered to the patient (or authorized representative)
- export files may be delivered to the patient electronically or on physical media such as a CD-ROM (? I think)
- export files must contain "the entire electronic health record for a single patient"
- export files must be "computable" (i.e., they can't can't rasterize the entire record into a PDF)
- export file formats need not be standardized, but must be fully and publicly documented by the vendor, including "data dictionary" and everything else needed to use the export "without loss of information or its meaning"
ONC's proposal comes very close to enabling a vibrant ecosystem where third-party services can benefit from interpreting complete clinical records. It's a strong complement to the standardized data payloads required for USCDI export. But for this "full EHI export" to provide a usable consumer experience, it must be:
-
Accessible directly to a patient (or authorized representative), rather than being built as a feature for clinic staff (e.g., in a scenario where a patient makes a request by phoning the medical records department, and departmental staff hits the "export" button in response to a request -- a friction-laden process)
-
Exposed end-to-end through an API, rather than being implemented exclusively as a button hidden deep within a patient portal experience, or being crippled by the exchange of physical media like CD-ROMs. This is critical because:
- Portals experiences vary, making features difficult to find and correctly describe (e.g., if a third party is trying to guide patients toward the export functoinality in a variety of portals). This was a clear challenge for anyone trying to identify the "Transmit to a third party" features of a patient portal in the MU2 timeframe.
- Managing physical media would take access outside the realm of modern, convenient consumer experiences
- Managing files may be challenging on many patient devices (e.g., mobile phones), and some files may be best suited for off-device storage (e.g., in the cloud). API connectivity ensures that patients can have a seamless experience for accessing all of their health data, not just a core data set.
ONC should require that certified EHRs support full EHI export via patient-accessible API, even without standardizing the API or the data payloads. This will meet the Cures intent for API access.
Note that this EHI export API is in addition to the other proposed patient-access API requirements (i.e., USCDI access using SMART on FHIR).
With these requirements in place, we can work toward a standardized API for managing export requests, even as the data payloads themselves remain vendor-specific (non-standardized). For example, we could define an operation, accessible to patient-authorized apps, as follows.
This operation builds on the asynchronous export capabilities currently being defined in FHIR. The response payload, rather than including standardized FHIR resources with the patient's EHR, simply returns a list of URLs to files in vendor-defined formats (e.g., vendor-specific JSON formats or CSVs). The completed export result might look like:
{
"transactionTime": "[instant]",
"request" : "[base]/Patient/123/$cures-ehi-export",
"requiresAccessToken" : true,
"extension": {
"ehiFiles": [
"http://server.example.org/patient_file_1.zip",
"http://server.example.org/patient_file_2.json",
]
},
"error" : [{
"type" : "OperationOutcome",
"url" : "http://serverpath2/err_file_1.ndjson"
}]
}
Note that we use an extension property because the output files don't follow the FHIR async API convention
(ndjson files containing one resource per line; all entries within a given file are of a uniform type).
Alternatively, we might avoid using an extension here and instead push the final URLs into DocumentReference
resources, like:
{
"transactionTime": "[instant]",
"request" : "[base]/Patient/123/$cures-ehi-export",
"requiresAccessToken" : true,
"output" : [{
"type" : "DocumentReference",
"url" : "http://serverpath2/document_references.ndjson"
}],
"error" : [{
"type" : "OperationOutcome",
"url" : "http://serverpath2/err_file_1.ndjson"
}]
}
... where the document_references.ndjson file would have content like:
{"resourceType": "DocumentReference", "content": [{"attachment": {"url": "http://server.example.org/patient_file_1.zip"}}], "status": "current"}
{"resourceType": "DocumentReference", "content": [{"attachment": {"url": "http://server.example.org/patient_file_2.json"}}]. "status": "current"}
While it's more verbose, advantages of this approach are:
- doesn't require extension properties in the FHIR async response payload
- could sale up to complete database export across all patients, where the number of files is large enough that listing them all in a single API payload is impractical (specifically: tihs gives the server a way to keep the async status response small, and split a long list of exported file URLs across as many ndjson files as needed)