Google Health Opens To the Public 199
Several readers noted that the limited pilot test of Google Health has ended, and Google is now offering the service to the public at large. Google Health allows patients to enter health information, such as conditions and prescriptions, find related medical information, and share information with their health care providers (at the patient's request). Information may be entered manually or imported from partnered health care providers. The service is offered free of charge, and Google won't be including advertising. The WSJ and the NYTimes provide details about Google's numerous health partners.
Privacy (Score:5, Insightful)
Re: (Score:3, Insightful)
Maybe the laws need to be re-written.
I can't imagine that Federal & State Law foresaw 3rd party control of medical files.
Exactly (Score:5, Informative)
I agree 100% with GP. I even wrote Google to that effect. Not that I expect them to do anything with my feedback other than send it to the bitbucket.
This is a horrible, horrible precedent to set, allowing a 3rd party to have access to people's medical records without any protection under the law.
HIPPA *does* need to be updated, immediately, to cover online databases.
Re: (Score:2)
If your medical provider decides to send your records to Google, AFAIK, there is jack squat you can do.
The only place "opt-in" gets mentioned is on their page for "Third-Party Developer Policies".
You misunderstand HIPPA (Score:5, Informative)
The way Google Health works is you give them your data and they store it.
Re: (Score:2)
When it comes to myself submitting information to a third party, it should be on me to make sure that party is trusted. If I gave all my medical information to my crazy neighbor, I really shouldn't expect them to be held to the same standard as a trusted p
Re: (Score:2)
Re: (Score:3, Informative)
Only online access provided by medical providers that are explicitly covered under the Act. This new generation of info-providers such as Google, MS, etc. are NOT covered by HIPPA. Even the Government has said so (link is posted elsewhere in this discussion by someone).
That is the third time in a row you've referred to the HIPAA (Health Insurance Portability and Accountability Act) [wikipedia.org] as "HIPPA", even after being corrected by someone else. Is there some reason you keep doing this?
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Re: (Score:3, Informative)
Re:Privacy (Score:5, Insightful)
I don't trust Google. I'm of the opinion that companies have to obey the rules/laws of government. I'd rather "trust" the government if they said that HIPAA doesn't apply to Google rather than Google saying that HIPAA doesn't apply to them. There is a part of me that actually hopes that Google gets slapped by the government for violating HIPAA.
Re:Privacy (Score:5, Informative)
Why not? (Score:5, Insightful)
Re:Why not? (Score:4, Informative)
Google is NOT a healthcare clearinghouse (you might reasonably think it meets the definition - I used to think it would as well, but covered clearinghouses are directly linked to care providers, the definition does not cover third party service providers (of medical devices, Customized off the shelf software etc.).
Regarding HIPAA applicability to google: any HIPAA CE (Covered Entity, which includes most of your health care providers who also use or maintain electronic patient data) MUST include terms in a contractual relationship with a BA (Business Associate - anyone the CE does business with involving patient data) which mirror HIPAA requirements (this is the "Business Associate Rule").
YOU can release your records to Google, this would involve NO HIPAA issues.
If your Primary Care Provider is a CE (likely) and they contract with Google (as a health partner etc.) then the terms of that contract MUST include HIPAA protections (i.e. the CE must require, contractually, that the BA meet the same HIPAA requirements which the CE is subject to).
Re: (Score:3, Informative)
Re:Privacy (Score:5, Interesting)
Re:Privacy (Score:4, Informative)
Re: (Score:2, Informative)
http://www.google.com/health_hipaa.html [google.com]
Looks to me like Google is more private than HIPAA.
Re: (Score:2)
Re: (Score:3, Insightful)
I find the privacy concerns a bit off beat.
I do online banking.
I file my taxes online...
When is there such sensitivity about my health data. As far I see, it is password protected, and as long as the data is not shared with people outside my 'approved list', I have no issue with it. Google might eventually adopt HIPAA, but I seriously doubt Google will be freely sharing your private information with health insurance providers without your
Re: (Score:2)
Because healthcare is privately funded and managed in the USA. You don't want to be turned down for a job because of something in your health history, for example. Even in Canada, you probably don't want to be turned down for life insurance because of a history of disease in your family. You may have to disclose this information in order to get life insurance, but you probably want to be very sure that the insurance company has no more information than y
That's okay... others will, and you'll be F'ed (Score:2)
And then what happens?
Say your dad participates. Google now has info on your dad. They find that he has a heart condition, and that this is hereditary.
Google also knows about you. It knows through social networking that your dad is, well, your dad.
Now insurance comp
Wow (Score:2, Insightful)
I'm quite torn here. On the one hand, having so much information readily available in one spot is rather exciting. This is especially true if Google doesn't just cave in to "Big Pharma" and allows you to see "alternative" or "herbal" remedies for prescriptions or OTC drugs you have entered.
OTHO, Google having all that information about my medical condition in one place is somewhat disturbing... Aside from rational or irrational fears about Google having this information, aren't there HIPPA issues to be
Re: (Score:3, Interesting)
Given that there exists hardware to inspect packets for p2p traffic, how hard would it be to for a person of unpleasant intent to get hold of some of that and start mining 'encrypted' health information.
I can see it now, 'want to get health insurance again? Pay us x dollars or we expose condition y to your health insurance provider.'
Come to think of it, all they'd need to do is pretend they had the info, someone woul
Re: (Score:2)
Re:Wow (Score:4, Interesting)
In other words, if you are in their State, you have to follow their rules, and their rules say your price isn't affected by "condition y".
On a related note, I read an article [slate.com] stating that part of a McCain proposal would allow insurance companies to change their legal residency for the purpose of using another State's insurance rules. In other words, a New York insurance company can pay taxes in Arizona and use their insurance rules.
Re: (Score:2)
That's for new insurance policies, of course; if you get sick and the insurer wants to raise rates, fuck 'im in the ear.
Re: (Score:2)
Re: (Score:2)
Things like auto insurance use a modified version of this model. If you've had three DWIs in the past
Re: (Score:3, Insightful)
Re: (Score:2)
And how, exactly, would one do that? Presuming you're not talking about finding out the CEO's address, clubbing him over the head so that he'll hold still, then unzip and literally try to shove.. well, you know where that's going.
If they offer you the option of "either pay more, or leave", and "leave" means the option of having to get a -new- policy with another company (which you already say you shouldn't be able to get - except m
Re: (Score:2)
Given that there exists hardware to inspect packets for p2p traffic, how hard would it be to for a person of unpleasant intent to get hold of some of that and start mining 'encrypted' health information.
It's true that one can identify encrypted protocols by doing traffic analysis: take the mean and variance of packet size and delay in both directions, and you got 8 dimensions; look at those 8 for a set of known protocols, and find the nearest match for your unknown stream; also, the number of similar-looking connections could be used if you can watch that (say, you're the ISP or otherwise close to the sender).
However, there's a difference between saying "this is bittorrent" and "this is {wow-update.exe,ub
Re: (Score:2)
What bothers me is that all this is built on top of tcp/ip, and that is inherently insecure. Given that there exists hardware to inspect packets for p2p traffic, how hard would it be to for a person of unpleasant intent to get hold of some of that and start mining 'encrypted' health information.
You might want to do some reading on TCP/IP and on SSL/TLS encryption. P2P deep packet inspection techniques do not magically override TLS data privacy where it's used, and you can be sure that Google will be using it for this.
That's not to say I approve of Google Health in the least, but the reasons you stated above are complete nonsense.
Re: (Score:2)
Tcp/ip isn't inherently insecure, it's not inherently anything except a transport protocol. The protocol you mean is https, which is the primary protocol you use to make anything secure when submitting data from a client to a webserver.
Re: (Score:2)
Re:Wow (Score:4, Insightful)
Re:Wow (Score:5, Insightful)
Re:Wow (Score:5, Funny)
Re:Wow (Score:4, Informative)
Re: (Score:2)
Re: (Score:2)
Explain that!
Re:Wow (Score:4, Funny)
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
There's numerous good clinical studies on substances like Echinacea that show that it boosts immune response to things like upper respiratory infections and other symptoms of a cold.
Sure they might help to a degree, but in the end in cases such as the cold your immune system is carrying the load which was the point of my statement. This "herb" the person took didn't kill the cold virus load, their immune system did.
but to just discount the possible effects of natural products simply on the basis that they're not made by a pharmaceutical company is absurd.
Because that's what I clearly said. Oh wait... Why is it that whenever you point out the crockery of people like Bob Barefoot and Kevin Trudeau that you get lumped in as if you love everything the pharmaceutical companies do? The pharmaceutical companies are some of th
Re: (Score:2)
+1 Sarcastic
'Cause it's not quite funny, and it is certainly flamebait (for the challenged).
Slashdot sucks.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Most of the herbal remedies are based on things that have been used for tho
Re: (Score:2)
Re: (Score:2)
In my humble opinion, Kevin Trudeau is not a snake oil salesman right now.
Then you clearly have no medical or scientific training.
He has also spoken with Dr. Robert Barefoot, a good doctor who deals with calcium deficiencies and discovered a connection between acidic pH and bad health.
Hahahaha. People still believe this nonsense? Your body needs to have an acidic pH for you to be healthy.
Case in point: Barefoot ran the pH test on patients in a hospital. It was a sickly yellow color, and he believed the test failed. As it turns out, he was in the terminal cancer ward, so his test was right on the mark.
Every human being has an acidic pH level. That's fucking normal. It's hilarious how easy people get duped by such nonsense.
I don't know Trudeau personally, however, I doubt that Barefoot would be associating with him if he were even half the charlatan that the Big-Pharma-Ad-Dollar-Funded media makes him out to be.
Except for the fact that Barefoot is an even bigger charlatan and as such has no qualms about working with Trudeau.
Re: (Score:2)
Testing the pH level of the saliva is the most reliable test of calcium deficiency and can also tell the state of a person's health. Testing saliva has no practical value in evaluating general health. The level is usually similar to blood pH, which the body keeps within a narrow range. When the saliva flow is high, the pH is usually about 7.4 (7 is neutral, low numbers are acid, and higher numbers are alkaline). Calcium intake does not affect the pH of saliva. The most common cause of low (acid) salivary pH is the presence in the mouth of bacteria that cause cavities. In diseases (such as diabetic acidosis) in which blood pH is dangerously low, the level is determined by blood pH testing and calcium pills have no relevance to treatment.
Bolded part is the part written by the author. http://www.quackwatch.org/01QuackeryRelatedTopics/DSH/coral.html [quackwatch.org]
Re: (Score:2)
"Over 200 degenerative diseases are caused by calcium deficiency. That includes cancer, heart disease, diabetes, Alzheimer's, you name it." These diseases are caused by acidosis--acidification of the body--lack of minerals, especially calcium. When you start taking coral calcium, your body alkalizes and drives out the acid [5 ]. All of these statements are incorrect. Calcium deficiency can weaken bones (osteoporosis), but it does not make the body more acidic or cause a wide range of diseases. The idea that calcium supplements (or dietary strategies) can change the acidity of the body is nonsense. The only acid level that diet or supplements can modify is the degree of acidity (pH) of the urine [6].
Emphasis added to the last line by me. BTW enjoy paying a dollar a pill for 5 cents worth of calcium carbonate. I'm know Bob's bank account thanks you.
Re: (Score:2)
Re: (Score:2)
This is especially true if Google doesn't just cave in to "Big Pharma" and allows you to see "alternative" or "herbal" remedies for prescriptions or OTC drugs you have entered.
Big Pharma as opposed to... alternative, herbal remedies? Give me a fucking break. The "alternaaative" and "herbaaal" industries generate billions each friggin' year.
I don't know about you, but if I'm dying of cancer one day - likely, since I'm a damn chainsmoker - I want my meds to come from people that spent years studying and have letters before or after their names, not some hairy-legged, lesbian shebeast that reeks of patchouli oil... waving a damn dead bush around and chanting about my chakras being
Uh oh... (Score:4, Funny)
Re:Uh oh... (Score:5, Funny)
Re: (Score:2)
Umm (Score:2)
I don't feel good, time for Google! (Score:2, Funny)
This is actually Google's spam fighting measure (Score:4, Funny)
Just wait till you hear about the plan they have to go after the Nigerian 409 scammers.
April Fools, right (Score:2)
Google Organ Search (Score:3, Interesting)
Disclaimer Needed (Score:2, Interesting)
Re:Disclaimer Needed (Score:4, Interesting)
It exists to alleviate line ups in walk-in clinics and emergency rooms by keeping some of the people with less serious problems from having to go down and see a doctor. This service looks like it will serve a similar purpose.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
google information horde (Score:5, Insightful)
Re: (Score:3, Insightful)
Yes, it has advertising, through "affiliates". (Score:5, Informative)
Yes, Google Health supports advertising. Spamming, even. Read the developer guidelines. [google.com] Google just doesn't run the ads themselves. That's outsourced to "affiliates".
There are some rules for affiliates, like "one spam per week per user" and "no popups or popunders". Other than that, consumers are fair game. In particular, affiliates are not prohibited from using Google health data to target ads, as long as they "disclose" that somewhere in their "privacy policy". The policy says "Only use Google Health user data for the purposes disclosed in your privacy policy, and obtain users' opt-in consent if personally identifiable health data will be used for ad targeting." So a bit of fine print, and the affiliate 0wns your health history.
It's a typical slimeball tactic - pretend to be the good guy, encourage "affiliates" to do the bad stuff.
Re:Yes, it has advertising, through "affiliates". (Score:5, Informative)
And, Google isn't protecting your information via HIPAA because it can't - it's not a "covered entity" under the definition [hhs.gov] outlined in the law. (That is, they aren't a health provider, billing clearinghouse, or health plan.) Instead, they provide the Google Health Privacy Policy [google.com], which seems pretty reasonable. Like HIPAA, it allows them to disclose information when it seems like the government (US, in this case, as that's where the service is limited to) compels it. Before you get hot and bothered, HIPAA allows this too - it's how we tell get to CPS about abused children, for example.
I'm not new here, but I'm used to Slashdot readers being somewhat more informed before having a fit. As a covered entity myself (I'm a physician), I look forward to the day when the patients who come in saying they doubled the pink pills but lost the yellow ones they took for that surgery to remove that thigamajig have a hope of a secure information repository to clarify their history, and potentially save their bacon.
Re: (Score:3, Funny)
Re: (Score:3, Funny)
pick one and be consistent.
Re: (Score:2)
1. Why is Google offering this product?
A: It's what we do...
6. If it's free, how does Google make money off Google Health?
...There are no ads in Google Health. Our primary focus is providing a good user experience and meeting our users' needs.
So they're just being nice guys I guess.
What I also found is... Health Care is a $2 Trillion i [zdnet.com]
Re: (Score:2)
missing drug side effects (Score:5, Interesting)
I know for a fact that there is explicit warnings on the packages about this particular reaction and I'm livid it isn't warning about it on the package insert in google. Especially since it can be permanent.
I've racked up a couple thousand dollars in medical bills already from this side effect, and it was a pain to get doctors to admit it happened until I went to a major university hospital. At that hospital they diagnosed me right away and basically said I'd have to wait it out.
If you are curious, basically I couldn't walk for over a week, terrible joint pain for months along with numbness in my hands, face, and body. Its a known side effect with this class. Rare, but known.
"How does Google make money off Google Health?" (Score:5, Insightful)
Much like other Google products we offer, Google Health is free to anyone who uses it. There are no ads in Google Health. Our primary focus is providing a good user experience and meeting our users' needs.
I've heard enough. I don't know what their long-term plan for monetizing Google Health is, and I don't really care now. I don't trust Google enough to consider even for a second entrusting my health care information to them (and I say this as someone who has thought very highly of the company since the beginning). And their weasly answer to the obvious question above, I think, justifies my mistrust.
Every for-profit company's primary focus is - making a profit. There's nothing whatsoever wrong with this, and the ideal situation arises when "providing a good user experience and meeting [...] users' needs" is aligned with the profit motive.
So why they can't be honest about their motivations in undertaking an expensive, large-scale project like this -- whatever those motivations are -- instead of trying to make us believe that they're doing it "out of the goodness of their hearts?" All their mealy-mouthedness accomplishes is to raise the suspicion that they've got something nasty up their sleeves. And that ensures that many users, including me, will never entrust their most private of private data to Google.
Re: (Score:2)
it's incredibly insulting that they would give an answer like that.
Re:"How does Google make money off Google Health?" (Score:5, Insightful)
Re: (Score:2)
Re: (Score:2)
Google Sex Life (Score:3, Funny)
Re: (Score:2)
Re: (Score:2, Informative)
Privacy...sure (Score:2)
After the way Google ratted out that guy who drew an unflattering picture of some Hindu saint and he got beaten and forced to eat out of the same bowl he'd used as a toilet, I think I'll pass on Google Health.
Having them turn any information I was stupid enough to give them over to an insurance company, cop, nosy government official or random thug on the street wouldn't be all that good for my health.
Let's see an iron-clad, carved-in-stone, sue-for-millions commitment from them and maybe we can talk.
And the big deal is.. what? (Score:2, Informative)
I hereby authorize Google to share the health information contained in my Google Health profile(s) in its entirety, to only those entities and individuals I designate, for the purpose of providing me with medical care and for the purpose of sharing my information with others that I choose.
Re: (Score:2)
Weasel words... (Score:3, Interesting)
However, Google may only use health information you provide as permitted by the Google Health Privacy Policy, your Sharing Authorization, and applicable law.
"YOU did not provide this information. Your doctor's office provided the information, so it is exempt from these policies."
See? It took me just a quick glance to find a huge conditional that is subject to interpretation. Don't think that
Where are the Google employees? (Score:2)
"Your confidential information is and always will be secure and treated with respect."
"The benefits of big databases are worth the risks."
"Trust us."
Compatible with traditional insurance? (Score:2)
This issue gets thorny when you deal with personal data like medical records. Insurance companies
Note to users: Change your GMail password (Score:3, Insightful)
Well, now you just got a shinny new Penile Prosthesis Insertion - Non-inflatable AND a Penile Prosthesis Insertion- Inflatable.
Have a nice day.
end user license agreement (EULA) (Score:2, Interesting)
FTC Covers This Which is STRONGER than HIPAA (Score:2)
oh goody goody....more stuff for .... (Score:2)
Not Very Technically Adept (Score:2, Interesting)
I also find it interesting that they are ready, willing and able to share my information with anyone THEY chose.
From the Agreement:
'11.2 You agree that this licence includes a right for Google to make such Content available to other companies, organizations or individuals with whom Google has relationships for the provision of syndicated services, and to use such Content in connection wit
This can help us find the "bad" doctors & loca (Score:3, Interesting)
Let Google Health be modified to compile results of medical procedures - by the practitioner(s), who perform them - and compare longer-term performance with expected failure & complication rates across the hospital...
and then compare each hospital's rates to "best practice" -
We could also get very useful (even valuable) data on risks of working / living in certain areas, eg, by post code... if correlations between location and diseases are available to all via Google Health.
Mapping sources of pollutions & overlaying incidence rate contour lines onto the same maps, might affect property prices... giving folks another [if economic] reason to cleanup the mess before people would move to a new development/location.
Gov't-held data is already held & analyzed, around the world, to support such analyses; eg:
While in South Australia, attending a Data Mining seminar (atop the EDS building in Adelaide), I heard some public sector IT managers report how Data Mining - even in -existing- Public Health Service databases - showed useful patterns of disease occuramces vs postcode...
but another public sector IT manager was quick to poit out that such results would not be made known to members of the public.
(Tell me: Does this kind of data hiding happen in such places as Sweden? I hope not... but give me the facts & some URLs where they are available; yes, some of us read Swedish here...
Re: (Score:2, Funny)
Good to know.
Also good to know that companies will be using our health history against us. Because they all care about us, individually.