Cloud computing is a rapidly emerging option for healthcare provider organizations, and is likely to remain so for the foreseeable future, both from the clinical as well as the business perspectives. After all, as noted in this issue’s Top Tech Trends feature package, revenues are increasingly being tied to better outcomes, social media tools are empowering patients to play an active role in their own healthcare, and telemedicine is gaining ground, just to name a few of the trends that are making cloud computing a viable platform in healthcare. The key factor underlying many of these trends is collaboration, among providers themselves and between providers and payers, as all will face pressures to work more closely together by sharing data.
Cloud computing can be an enabler as a platform for storing and sharing information in this collaborative environment. Yet even proponents acknowledge that cloud computing is not a panacea for every set of circumstances or for every provider organization. Instead, providers considering the cloud need to look internally at their own IT infrastructure needs before selecting which of their applications are most suitable for the cloud; and once they’ve done that, they need to evaluate cloud service providers (CSPs) carefully according to their healthcare experience and openness to being audited by the organizations using their services.
Taking a Cautious Approach
Chuck Podesta, senior vice president and CIO of Fletcher Allen Health Care, Burlington, Vt., says the cloud will be an important trend in healthcare, but adds that issues around data security and patient privacy still need to be worked out. Among his concerns is protected health information (PHI), which he says he is not ready to put on the cloud. Nonetheless, he maintains that the cloud has indeed demonstrated its value for imaging applications, from the standpoint of sharing images across systems. While not ruling it out for all applications, he says healthcare will be one of the last frontiers for cloud computing.
Similarly, Bill Spooner, senior vice president and CIO of Sharp HealthCare in San Diego, also has also taken a cautious approach to the cloud. He notes that while Sharp has created its own internal private cloud, it is moving slowly on external opportunities; it has adopted a few non-critical applications where it made sense with “vendor private clouds.” In his view, CSPs are mixed as to their readiness to stand up to information security audits; while some do engage formal audits, others don’t.
Scott Whyte is vice president of IT connectivity at Dignity Health, a 39-hosptial provider organization based in San Francisco (and which was formerly known as Catholic Healthcare West). He says Dignity’s experience with the cloud started small with certain web applications, and has gradually expanded. Its initial experience with the cloud was working with a CSP (ClearDATA Networks, Tempe, Ariz.), which was compliant with Health Insurance Portability and Accountability Act (HIPAA) requirements, on development activities. Over time the hospital network became more proactive in moving bigger applications to the cloud, he says. When asked what qualities he values in a CSP, he mentions the thought leadership, skills, and understanding of the healthcare space. HIPAA compliance goes beyond technical issues; it’s an understanding of federal and state laws and incorporation of that insight into their processes, he says.
Early cloud-based applications at Dignity were not care delivery applications per se, but rather focused on intra-hospital physician communications and digital branding. Today, the organization hosts certain clinical applications internally in its own enterprise data center that serves all 39 hospitals in the system, and uses software-as-a-service (SaaS) applications that are external to the data center. Its electronic health record (EHR) is hosted by the vendor (Cerner Corp., Kansas City, Mo.) Overall, he is seeing moves to the cloud that are strategic, need to be implemented quickly, and that need to be highly secure and HIPAA compliant.
Speaking of Dignity Health’s future plans, Whyte describes a “portfolio approach” to its data center operations, in which applications will be divided among the data center, the cloud and hosted by the vendor or as a SaaS, and its own enterprise data center infrastructure.
A Case for Collaboration
Whyte sees the trend in collaboration as an important driver in cloud adoption. Most health systems in the country are not monolithic care delivery systems that combine a health plan, hospital and physician group with other assets under one umbrella, he says. “If we think about the different reimbursement models that are developing within healthcare, there are different care delivery models that are paired together, such as with clinical integration and accountable care. Most of these groups have to collaborate, and there are advantages to being able to share and house data from different locations,” he says.
In his view, the cloud can foster collaboration between various external partners in a way that can be implemented quickly. He envisions the possibility of housing data from Dignity hospitals, their partners in the community, its foundation and medical groups, in a cloud service. In such a collaborative relationship, all partners will expect that there will be an auditable process in place.