The report noted that, while health IT plays an important role in improving healthcare quality and safety, it has the potential to cause harm “if not effectively developed, implemented, or used.” But then it cites a 2011 Institute of Medicine report that suggested health information systems were involved in less than 1% of medical errors.
Essential to such a framework, the BPC stated in the report, is a nonpunitive environment in which IT-related “patient safety events” can be reported and studied. To that end, the BPC also recommends the use of standardized reporting formats that “will significantly improve the ability for data to be aggregated and analyzed to support system-wide response and improvement.”
Potential for harm and the degree of direct patient contact should determine the level of oversight required, according to the report. With this in mind, the BPC stated that oversight for health IT should not be subject to the “traditional regulatory approaches” used in the oversight of medical devices.