Tag: healthcare

When it comes to Google Apps, I’m certifiable

Back in mid-2007 I deployed my first instance of Google Apps, replacing a Microsoft Exchange 2003 server. It was a controversial choice back then — Google Apps was still pretty new and it wasn’t yet clear whether Google was going to stick with the platform and build it out. But there were several deciding factors that pushed me to an Apps deployment:

  • I was working at a nonprofit, so Google Apps was free for us; worst case I could always fall back to the in-house system
  • Our Microsoft Exchange 2003 server was constantly running out of space and was a pain to backup
  • We lived under a monstrous waterfall of spam that required a special appliance outside the Exchange box that worked well but was costly
  • Our Internet connection was relatively slow and outrageously expensive, so handling all the mail traffic in-house was painful, especially when the in-house web site was what we really wanted to share with the world, not our email system
  • Our users wanted to send and receive larger and larger files via email, which only strained all of the above factors further

We made the switch, I uploaded a bunch of mail using Google’s then-primitive migration tools,  and I put everyone onto the web-based interface — no Outlook allowed. We did trainings and I spent a lot of time helping users get acclimated to the new way of doing things. This was before drag-and-drop email attachments in Gmail. It was before full compatibility with external calendar invitations. It was before Chrome.

And I was immediately hooked.

Why Go Google?

From an IT perspective, this Google Apps thing was awesome. There were no servers to own, nothing to back up, nothing to manage — aside from creating and deleting accounts. The users had far more space than they’d ever had (7GB at the time) and far more space than I could have ever offered locally at a reasonable price. The system was accessible everywhere, and no matter where you got your mail or looked at your calendar, it functioned the same way. And, as a nonprofit, it was all free! We even started using Google Docs right away, sharing selected spreadsheet data with remote workers and volunteers, allowing for real-time collaboration that at the time was mind-blowingly simple yet powerful.

Since then the Google Apps platform has matured with better features, a more homogenized interface in the apps, better administration tools, more reporting, more granular controls, and great (paid) add-ons for email archiving and spam control. And since then I’ve deployed Google Apps 4 more times, not to mention personal use. My most recent migration was last year, again dropping Microsoft Exchange 2003 and Outlook to go all-cloud all the time.

And then there was this past weekend.

Getting Certified

After managing and evangelizing Google Apps all these years, I stumbled across a certification program for Google Apps nerds like me: the Google Apps Certified Deployment Specialist. So I dug through the Study Guide, re-read a lot of stuff I knew, learned a few new tricks Google has developed in the last couple of years, and paid my testing fee.

The weird part was the testing method. Rather than send you to a local testing center — where you might sit for Microsoft or Citrix or VMware or other vendor exams — this one is done at home or in your office. You can take the test anywhere you have a live Internet connection, a Windows or Mac machine, and a special USB webcam they make you buy. Total cost is about the same as those other exams, but you can schedule it on weekends in evenings and take it at home. They proctor the exam through the webcam and special software.

It worked great. The only thing I was “corrected” on during the exam was the fact that I started to read some of the questions out loud, to puzzle them out audibly. That’s verboten, probably because they fear you’d read the questions out loud so you could either record the questions (and give them away to others wanting to take the exam) or ask someone else nearby to provide an answer. It’s too bad, because I like to “talk out” technical solutions. Oh, well.

61 questions after starting, I had passed the exam, so now I’m certified! It’s the first major cert I’ve picked up since the “good old days” of Windows NT 4 and Lotus Notes and Domino. And it’s fun to have a Google certification, perhaps because it’s so rare. My certificate was numbered “1298”, which suggests there were less than 1,300 people certified when I took the exam. That’s cool — I’m in a group smaller than my high school census (except we’re all certified Google Apps pros!).

Can you use Google Apps in a healthcare environment?

I may need to address this further in a future post, but the short answer is yes. People freak out about HIPAA (as they well should) but the key thing to consider is how you use your email system. Bottom line: If you don’t store or share PHI (protected health information) in your email system, then HIPAA rules don’t apply. And for those that are using email systems (of any kind) to share or transmit patient data, I have a question: Are you out of your mind? Email is a promiscuous platform by design — it’ll “sleep” with anyone and it’s 1 degree away from every email account worldwide — so why would you ever push patient information through it? If it helps, I’ve actually addressed the Apps/HIPAA discussion elsewhere before.

Sidebar: I may also have to write a post someday (really a rant) about email footers with lots of legal language in them — a silly practice that has no force of law behind it. If you want to put in a “please don’t share this” message down there, that’s cool, but stop trying to create unilateral contracts with your footers — that’s not a thing.

All that said, I do think Google needs to rethink their stance on signing HIPAA Business Associate Agreements (they won’t sign them). They either need to start signing or they need to post a definitive position paper on HIPAA issues related to Google Apps. Microsoft has shown a willingness to sign BAAs for Office 365 services, which makes their service more attractive, despite their downtime problems. Google has done a good job addressing the overall security of Google Apps, but they need to go a step further, to assuage the fears of healthcare executives and Boards that don’t understand technology very well.

What’s next?

For now I’m a happy Google Apps administrator, still learning, still sharing tips with users new to the platform. Oh, and I’m a Certified Deployment Specialist, of course! So if you’ve got questions about going Google in your healthcare environment (or any business, really) just let me know. I can answer some questions in the comments or we can take the conversation offline.

Buzz is building around the Fitbit Flex

Fitbit was one of the first to bring a consumer activity tracker + web site + mobile app ecosystem to the edge of the mass market, and they’ve won a lot of converts over the last couple years. But at the same time, there’s been an explosion of other trackers and platforms for capturing physical movement, encouraging more activity, and viewing and sharing the data collected. Can Fitbit stay on top?

Well, they’re certainly going to try.

This week Fitbit introduced yet another revision to their activity tracking lineup, a new design intended to recapture users that defected to the wristband-style Nike+ FuelBand or the Jawbone Up. And the tech press, in their annual CES frenzy, are trumpeting the announcement as the next big thing:

The details are simple, really. The Fitbit Flex will be $100 and launch sometime in the spring. You can pre-order right now.

For me, Fitbit is challenging my devotion to the Nike+ FuelBand by combining what I liked about the FitBit with what I like about the FuelBand. Mostly. So here’s my take on the pros and cons of old Fitbit, current FuelBand, and the announced Fitbit Flex…

Where the Fitbit One Beats the FuelBand

  • Because the design calls for you to wear the Fitbit near the center of your body mass (at or near the waist), it’s much more accurate when counting steps or overall body movement than wrist- or arm-mounted activity trackers.
  • Fitbit has several data integrations included with its cloud-based platform, so you can send your captured data lots of different places, including Microsoft HealthVault. This bodes well for the Fitbit’s future prospects as a provider-integrated EHR-syncing activity tracking platform. You know… someday.
  • The Fitbit web and smartphone app platform is more feature-complete than Nike’s, especially if you’re anal enough to enter all your foods, moods, water, and any exercises not picked up by the activity tracker. Nike has a great iOS app with Facebook integration for social health purposes, but then so does Fitbit.
  • All the Fitbit activity trackers are cheaper than the FuelBand. It’s $70 and $100 vs. $150. That’s a big difference.
  • The Fitbit One (but not the “Zip” edition) can track steps climbed using an altimeter function. The FuelBand can’t do that.
  • Like the new Flex (discussed below), the Fitbit One syncs wirelessly with low-power Bluetooth 4.0 anytime you’ve got the app running on your smartphone.

Where FuelBand Beats the Fitbit One

  • The Fitbit One is easily lost in pockets, off your belt, and can end up in the washing machine (and then the trash). The FuelBand, by comparison, just goes on your wrist — end of story. It’s snug and doesn’t have to come off much, so you’re not going to lose it easily. This advantage cannot be overstated. Lots of users have switched to the FuelBand because the data captured, while less accurate, is more complete and consistent because the FuelBand is just more likely to be worn.
  • The FuelBand’s integrated display is attractive, engaging, and informative. The Fitbit One’s display is okay and functional, but not all that engaging. For the good stuff you have to hop into the smartphone app.

And Now the Fitbit Flex: Where Does it Win?

  • The Fitbit Flex can be used for sleep monitoring, just like its non-wrist predecessors. The FuelBand skips this feature, though the Jawbone Up matches it.
  • If you can be woken up by a vibrating wrist, then the Flex can be your alarm clock. LIke the Jawbone Up, it will theoretically buzz at the right moment in your sleep cycle so you wake up refreshed. Reviewers seem to think it works. The FuelBand has no such feature.
  • The motion-sensing part of the Flex can be popped out and dropped in a pocket if you don’t want to wear the wristband.
  • The Nike FuelBand is sold in 3 wrist sizes and you have to figure out which one is right for you (I screwed up on my first choice). The Flex comes with 2 bands and has a highly-adjustable watch-style wristband.
  • You can swap out different Flex wristband colors (if you must) by buying additional bands.
  • Using Bluetooth 4.0 means the Fitbit Flex can maintain smartphone connectivity all day without killing either the wristband’s or phone’s batteries. The FuelBand runs on older Bluetooth modes, requiring manual syncing and more power. The Jawbone Up isn’t even wireless, instead plugging in to your headphone jack for syncing.

Potential Fitbit Flex Problems

  • The FuelBand has a smooth, rounded shape across its entire body, but the Fitbit Flex has a blocky, squared-off top that’s much more likely to catch on clothing. I’m also wondering whether the watchband styling will be annoying. I haven’t worn a classic watch in years.
  • Aside from the 5 LED dots, there’s no multi-function display, so it’s a step ahead of the Jawbone Up, which has no display at all, but several steps behind the FuelBand, which can also act as a watch. (Of course, with Bluetooth 4.0 live syncing, you can view your Fitbit stats on your smartphone anytime.)
  • The Flex lacks the altimeter of the Fitbit One, so no tracking steps climbed.
  • While wrist placement is convenient, it’s also far less accurate in measuring activity when compared against the Fitbit One or any torso-bound tracker.

Conclusions: Fitbit Flex Wins, But It’s a Fast-Moving Market

  • The Fitbit Flex is a winner overall, if it works as advertised. Remember that the Jawbone Up was a disaster at launch and took a year to be revised. Time will tell, but Fitbit has successfully built and launched all prior models.
  • The Flex effectively neutralizes the threat of the FuelBand and the Jawbone Up by offering equivalent physical functionality at a lower price.
  • The Fitbit platform is a major advantage you can’t see on the box, but it will matter most in the long run. Their platform is purpose-built and widely-integrated with other apps and web systems. The FuelBand is, let’s be honest, a side project for Nike. The Up is similarly a side project for Jawbone, the Bluetooth headset and portable speaker manufacturer. Fitbit is focused where the others aren’t.
  • For all the good stuff about Fitbit and the Flex, the truth is the quantified self sector is just starting to reach the mass market. Who knows who wins in the long run?

For now, I’ve pre-ordered the Fitbit Flex for myself. And I can report back here in the spring.

Health IT Links: 2012-01-03

Here are my selected links, with commentary, from the Health IT, community health center (CHC), nonprofit, and general IT sectors today. Please pass me any recommendations you’ve got in the comments or hit me up on Twitter: @jmproffitt.

Products

  • PhoneFactor (Mini-Review at SC Magazine)
    Add 2-factor authentication based on phone calls, SMS messages, and OATH to your web apps, Terminal Services, Citrix sessions, and RADIUS-backed VPN sessions on the cheap. Pretty cool. SC Magazine certainly liked it. (Another option would be to deploy an SSL VPN with 2-factor features built-in, but that’s a story for another day.)
  • Technologies to watch 2013: Windows Server 2012 cannot be ignored
    The Windows Server platform continues to march on, with some great additions in the 2012 edition. This article points to more than 9 advances that just might solve some problems for you, including the vastly-improved Hyper-V, and some fascinating storage pooling techniques blended with a faster SMB file transmission implementation. Of course, watch out for application hosting issues — your app vendors may not yet support Server 2012. I don’t know about you, but we’re still eliminating Windows Server 2003 servers.

Security

Business of Healthcare

  • WellPoint to cover virtual doctor visits
    More payers are starting to cover telemedicine / telehealth costs. Do you do any telehealth in your clinic today? We don’t do it yet, but there’s a real future here, so I know I’m paying close attention.

Health IT Links and Notes: 2012-12-31

Here are my favorite links from the Health IT and general IT sector today. Follow me on Twitter to get most of these links real-time, albeit with less commentary.

OCHIN awarded federal grant to help community health centers with HIT
OCHIN has scored a 3-year $775,000 annual grant to provide services to client clinics dealing with PCMH, MU, EHR implementations and so forth. Good for them. But I wonder whether the client clinics might be better off struggling with some or all of these issues directly. After all, they’ll have to change their cultures to really develop a viable PCMH program, and you can’t buy culture. Furthermore, if you think Health IT changes are going to stop after PCMH and MU, you’re dreaming. Plan to hire IT capacity in-house if you can, because you have got to have internal change and technical capacity.

Vampire data and 3 other cyber security threats for 2013
I’m always a little suspicious of a security services vendor trumpeting all the threats that will destroy your business if you don’t hire someone like them. But in truth the threats are real — it’s just a question of how much risk you’re really facing in your situation. Still, the threats and issues to consider here include:

  • Watch out for risks posed by data you aren’t aware of or can’t easily monitor or control (what they’re calling “vampire data”), including cloud-hosted stuff or old data stores you’ve forgotten about
  • If you don’t already have lawyers and others on retainer to help you in a breach situation, you really should because you don’t want to be scrambling to hire them after a breach
  • You really need to be logging stuff and reviewing the logs, folks (easier said than done)
  • Hackers are as much about disrupting your business as stealing your data these days
  • Just start publishing your breaches, even if it doesn’t involve ePHI

Analysis: Microsoft Is Squandering Its Hyper-V Opportunity
Critics love the Hyper-V included with Windows Server 2012. But it’s not taking off because of several strategic mistakes Microsoft has made and continues making. Meanwhile, VMware remains king of virtualization for most businesses.

How to Say ‘Yes’ to BYOD
Saying “no way in hell” to smartphones, tablets and other employee-owned gear in the enterprise strikes me as a bigger risk than saying “yes, but with controls” and this audio panel discusses how you can say yes and feel good about it. About 15 minutes long.

How MiGym plans to quantify the health club workout
Finally. Pretty soon you’ll be able to take your smartphone to the gym and capture workout data from the machines already there, then sling that data into an online PHR (like Microsoft’s almost-forgotten HealthVault). My own thinking is that there’s a future for CHCs in the health club space. I mean what are we doing, disease management or health promotion? Keep an eye on gyms, health data devices (the “quantified self” movement), PHRs, and developments in payer preferences for preventive care with results.

Health Care and Healthcare: One gets you well, the other gets paid

It’s good to know I’m not the only one confused over the use of “healthcare” and “health care” when referring to elements in this industry. Lots of articles out there, including these, that shed light on the controversy:

The general consensus seems to be that “healthcare” is suggestive of the entire system, or the industry, and not specific acts of medical service. When the space is added between the words, it’s more personal, more medical, more health-focused.

If we agree on that, then most of the time I’ll be using “healthcare” in my writing, since I’m usually thinking and working at a systemic level — I’m not a provider. So for me…

  • I’m a “health care” consumer when I see a doctor.
  • I’m at the mercy of “healthcare” when I deal with my insurance company.
  • I’m a “healthcare” practitioner by way of technology, and hopefully my colleagues can provide better “health care” when I’ve done my job well.

Or put simply: health care gets you well, but healthcare gets paid.

Bonus Points: HIPAA
Seeing HIPAA written incorrectly is a particular pet peeve of mine, so I loved this quote from Bob Coffield at the Health Care Law Blog:

As for HIPAA — I always use whether someone spells it correctly to judge how knowledgeable they are about the subject.

Get ready for 2013. It’s time for some changes.

black-hole-banner

When I left public media I kept up this blog for a while, but naturally it’s fallen out of favor when competing for my time and attention. I’ve since moved back into the IT world, worked almost exclusively with nonprofits, and now I’m working in healthcare IT within a nonprofit. For me, this has been a great move — I like technology, I like working with nonprofits, and healthcare is a fast-moving industry. Put it all together and it keeps me busy.

But I’ve missed blogging. Even my Twitter habit has fallen by the wayside in the last couple years, especially as I worked on a massive project throughout 2012: opening a new healthcare facility with an built-from-scratch IT infrastructure.

The new facility work is wrapping up now, and while there’s always plenty to do at the office, I figure I’ve got some insights I’d like to share, and I’d like to engage in some conversations with folks out there that do the same kind of work I do every day.

So I’m coming back to blogging. It just won’t be about public media.

I thought about leaving gravitymedium.com behind and getting a new domain. Hell, I actually bought a few domain names and even set a couple up. I created new Twitter accounts, even a unique Google+ account and a Google Apps domain. But I kept coming back to my first domain, where I’ve put in so much work over the years, and I just can’t give it up. So I’m not.

Gravity Medium will remain my blogging home online, but since my focus is shifting, so will the blog. New topics will include healthcare and small business IT, nonprofit and technology management, consumerization of tech, data security, privacy, and so on — all the things I’m busy with professionally and want to share. And naturally, I’m hoping some of the folks out there doing the same work I’m doing will be interested in sharing their comments and ideas, too.

So here we go. The new year is upon us. And I’m taking this blog supernova.

Healthcare, journalism, racism, obscenity and the FCC

While Americans have gained a national health care plan, something darker has been unleashed. Racism in American political life has been emboldened by the attacks on the administration allowed on certain media. Meanwhile the FCC takes refuge behind 1st Amendment rhetoric and concerns itself with “wardrobe malfunctions” rather than assaults on democracy perpetrated by so-called journalists.

via nowthedetails.blogspot.com

Former NPR ombudsman Jeffrey Dvorkin is always enlightening to follow.