michaeltendo

Tournament username: Mage_Health
Karma: 0
Recent posts
Recent comments
michaeltendo · 32d ago

Happy to explain to any other individuals interested in the little app.

michaeltendo · 32d ago

Ironically, there is already a US company doing something similarly. https://onerecord.com/
And Apple Health too has a service for requesting records.
I'm totally dumbfounded by the negative reflex you exhibit.

For the sake of other curious individuals:
1. Patients' consent can be verified remotely with ID verification
2. having an iPad in the waiting room, would not be the same as this, because with Mage, you provide data from your records, without having to refill a form, paper isn't the only issue with the form.

michaeltendo · 33d ago

The focus is on giving patients easy access.
It's true that patients can even be denied access to some data, legally, such as therapy notes.
So it is okay for hospitals to keep the data, as long as patients can exercise their rights to access too, and there is a secure way(Mage) to deliver the data to them, because frankly, we're all thinking it. Sending patients' results over email/sms is already a HIPAA violation, and countless hospitals have been doing it during COVID. That's a class-action law-suit waiting to happen.

michaeltendo · 33d ago

Actually this is part of the reason why it is a challenge, but again, the fact that it is hard, makes it worth doing.
Also, since patients have a right to request for their records from the hospitals. The goal is to create a medium for them to send requests to the hospitals and for hospitals to provide the requested records.

Currently, when patients need to ask for their data (exercising their right), that data may be sent through a third party; fax, e-mail, you name it (unencrypted, hence insecure). Or patients required to pick them up. So we are simply a carrier, one who encrypts the data we transmit such that only the recipient can read it.

My hope is that their motivation to integrate with us, is for the mutual benefit, that they can also pick records from the patients.
I know you said there are systems to get records from past hospitals, but this is not a absolute certainty, because there's data people enter themselves, such nutritional, fitness, cases of people moving out of the country, etc

I wanted to discuss because a back and forth can get incoherent when the conversation diverges into multiple concurrent arguments. And if I can convince you, I can sleep better, knowing hospitals will understand that I am not a threat. I live and breathe patients' best interests.

I did build an EHR, but I know that I can't replace the ones big hospitals already have. This should be something that is added to the front desk, whoever hands out forms to patients, should have them scan the hospital code to share their data and get it on the screen. The selling point for some hospitals has simply been; time saved in the waiting room.

A major life-saving note that can't be ignored, is bringing that data sharing to more countries, I've lost a friend because a surgical procedure was erroneously done on them twice. Can you imagine? I come from Uganda, BTW.

michaeltendo · 34d ago

You must be https://www.linkedin.com/in/kenjdsouza/
Please accept my connection on LinkedIn.

michaeltendo · 34d ago

I don't work for WhatsApp, so let's maybe re-align back to simply defending end-to-end encryption. I'm certain whatsapp collects metadata which can be subpoenaed, this can go a long way in a conviction even without actual message content, and if they can compel one of the parties to hand them their unlocked phone, then there you go, maybe WhatsApp did give in to the new regulation, that makes them sneaky for not going public about the fact they broke the encryption for their Indian users.

If I say encryption I mean data at rest. I think everyone infers that.

How do you figure I do this without patient's consent? My whole deal is to bring patient's consent into every step.

I really think it becomes incoherent from here. Can you hop on a quick call? https://www.linkedin.com/in/michaeltendo/

michaeltendo · 34d ago

Where to start?
Unless quantum computing turns out to break RSA encryption, I don't think WhatsApp or anyone can read encrypted data.

The goal is to not have any hospital storing the data, but make it possible for them to access it once you grant permission. Basically a messaging app for you to give them ephemeral access when they need it to treat you, not us, only the hospital. END-TO-END ENCRYPTION.
The system is actually a quick way for smaller health facilities to be HIPAA compliant without having to develop custom systems.

We transfer the data from the patient to the hospital and back, but it is ENCRYPTED. The same way blockchain networks are public but still secure.

https://en.wikipedia.org/wiki/End-to-end_encryption The first line is enough: "End-to-end encryption (E2EE) is a system of communication where ONLY the communicating users can read the messages."

Please first confirm that you understand how we do not ask anyone to give us their data. I would like to answer the next parts.

michaeltendo · 34d ago

Thank you so much for asking. This is a very sensitive topic and it always invokes a negative reflex, but I rarely get the chance to explain.

Ironically, it is the system you described that is insecure; because it is not the patient who determines when and by whom their data is accessed.
If what you described had patient's control and encrypted transfers, it would be a perfect system. The patients are not handing over the records to us, just like WhatsApp doesn't own our texts, we just enable the encrypted exchange. Our employees can not read the content.

Sidenote: Many countries don't have any such privilege of asking to transfer records to a new hospitals, so there's that.

Also: The realtime feedback on your diagnoses and test results as they are made is an added convenience, integrating fitness data into your medical record, more.

Not to mention, Our efforts exceed this one goal. The product extends to:
- Verification of medical insurance and Certification of immunisations.
- Distributed clinical studies when patients volunteer their medical data.
- Insurance scoring to give customised better health plans
- Telemedicine with online appointments and ordering prescribed medication
- Monitoring baby health and tracking immunisations.