Sage Journals: Discover world-class research

Abstract

Electronic health record-caused safety risks are an unintended consequence of the implementation of clinical systems. To identify activities essential to assuring that the electronic health record is managed and used safely, we used the Rapid Assessment Process, a collection of qualitative methods. A multidisciplinary team conducted visits to five healthcare sites to learn about best practices. Although titles and roles were very different across sites, certain tasks considered necessary by our subjects were remarkably similar. We identified 10 groups of activities/tasks in three major areas. Area A, decision-making activities, included overseeing, planning, and reviewing to assure electronic health record safety. Area B, organizational learning activities, involved monitoring, testing, analyzing, and reporting. Finally, Area C, user-related activities, included training, communication, and building clinical decision support. To minimize electronic health record-related patient safety risks, leaders in healthcare organizations should ensure that these essential activities are performed.

Keywords

electronic health records governance patient safety qualitative research

Introduction

The United States has spent billions of dollars providing incentives for health care providers and organizations to use electronic health records (EHRs). However, implementation of EHR-related initiatives has encountered greater than expected challenges.^1–4 Reports have warned of unintended consequences of health information technology (HIT) adoption, including new patient safety problems and reduced provider efficiency resulting from the implementation and use of EHRs.^5–16 We define EHR safety as the design, implementation, and use of EHRs in such a way that patients are not put at risk. EHR safety occurs in a sociotechnical environment, which includes the social environment in which it is implemented as well as the hardware and software required to implement the system.¹⁷ Therefore, risks for EHR-related errors may be related to features of the technology itself, to user behavior, and/or to organizational policies about how the EHR is routinely used, maintained, and monitored. With ever-increasing use of EHRs, organizations face mounting patient safety risks. However, little research about EHR safety has been conducted,¹⁸ though some research has been done on risks related to computerized provider order entry (CPOE).^2,5 There have thus far been no studies about activities and tasks needed for reducing patient safety risks related to the broader area of EHR systems.

To help organizations to implement and use EHRs safely, the US Office of the National Coordinator for Health Information Technology (ONC) sponsored the development of the Safety Assurance Factors for EHR Resilience (SAFER) Guides.¹⁹ The overall purpose of the SAFER Guides project was to develop and validate proactive self-assessment tools to ensure that EHR-enabled clinical work systems are safe and effective. Eight high-risk areas identified by an expert panel became the foci of the guides: Organizational Responsibilities, System Configuration, System Interfaces, Contingency Planning, Patient Identification, CPOE with Clinical Decision Support (CDS), Test Results Reporting and Follow-up, and Clinician Communication. Their development involved a literature search, input from a panel of experts, and stakeholder engagement, but because the evidence base about EHR safety was not large, we also opted to perform a qualitative study to gather further evidence of best practices related to each guide.

Primary objective

The purpose of this study, aimed specifically at development of the Organizational Responsibilities guide, but also designed to inform development of the organizational aspects of topics covered in the other guides, was to identify the essential activities performed by people within healthcare organizations to assure that the EHR is managed and used safely. We decided to focus on activities and tasks because titles and roles differ so much across organizations.

Methods

Linstone’s original Multiple Perspectives model^20–22 guided the research design, data collection, and analysis of the qualitative study. Following this framework, we gathered personal, organizational, and technical perspectives on EHR safety from a wide variety of subjects. A multidisciplinary team of informaticians, social scientists, clinicians, and usability experts conducted visits to five healthcare sites (eight different care organizations) in 2012 to assess the context within which the tools would be used and to learn about best practices for EHR safety.²³ A detailed description of the initial study protocol, written prior to conducting the study, has been published elsewhere.²⁴ The qualitative study methods, only briefly described in the protocol, are described in greater detail below. The qualitative study was approved by the human research committees at Oregon Health & Science University, the University of Texas Health Science Center at Houston, Baylor College of Medicine, and the relevant committee at each study site.

Selection of sites

Selection of the five sites was based on several factors, including geography, organizational type (e.g. academic medical center, privately owned outpatient clinics, and federally qualified health centers), care setting (inpatient and ambulatory), experience with clinical information systems, and comprehensiveness of approach and/or resources to address EHR safety. The expert panel members assisted with selection of sites they believed were excellent in EHR safety and met these criteria. The following organizations within the United States were selected for the site visits:

Geisinger Health System based in Danville, PA, a large integrated health delivery system with sophisticated use of Epic, having implemented it in outpatient clinics in 1996 and the first hospital in 2006;

Family Physicians Group in Orlando, FL, a group of private primary care clinics in the process of developing expertise with GE Centricity;

Alliance of Chicago, a group of safety net clinics in Chicago, IL using GE Centricity since 2006;

Four small ambulatory clinics with between 1 and 10 providers in the Denver and Colorado Springs, CO areas using five different EHR systems for between 2 and 10 years;

Partners Healthcare in Boston, MA, a large delivery system with a history of locally developed EHR systems, dating back 3 to 4 decades, that was in the process of being replaced with a commercial system.

Selection of subjects

We followed the Multiple Perspectives Model for subject selection, assuring that those we interviewed and observed could offer informed perspectives on HIT use, content, technology, and governance. A contact person at each site helped us select appropriate individuals to invite for interviews and observation and provided introductions. We asked to speak with a broad spectrum of people who perform activities related to EHR safety: individuals in leadership, informatics, information technology (IT), quality and safety, health information management (HIM), and other departments. During our observations, we shadowed users of EHRs in both inpatient and outpatient settings.

Data collection methods

We used the Rapid Assessment Process (RAP) methodology for this study.^25,26 RAP is a collection of qualitative methods and it is especially useful for conducting time-efficient studies because it depends on intensive work over shorter periods of time than needed for classical ethnography due to its use by a multidisciplinary team. Our efforts involved gathering information about relevant EHR safety practices from on-site informaticians prior to the visit, a demonstration of the EHR system, semi-structured interviews (see Table 1 for a list of questions from which we selected the most relevant for each interviewee), interviews to gather input about items in draft versions of the guides, and observation of clinic activities and shadowing of clinicians. All interviews were recorded and transcribed and researchers took detailed field notes during observations.

Table 1.

Interview guide questions.

Master list of possible interview questions (tailored for each interviewee)
1. About you
First, we’d like to learn a little about you. Could you give us a few words about your background?
How long have you been with this organization?
Would you please describe your role here?
2. About the culture and history of EHR safety
What was the motivation for EHR safety efforts? History?
Probe if development of inpatient and outpatient are not both described
What were the biggest challenges to assuring safety here?
How was it determined that your selected EHR was safe? (commercial systems)
How have attitudes toward EHR safety shifted over time?
How did you conduct formal usability testing of your EHR prior to go live?
What external factors such as state regulations and federal incentives impact your EHR safety practices?
What external reporting of adverse events caused by the EHR do you do?
How have concerns about medical/legal liability impacted reporting?
3. About the practice of EHR safety
What do you recommend doing to guard against HCI safety problems?
What communication channels are best used to discuss EHR safety?
How do you address workflow redesign issues instigated by the EHR?
How did you decide between customizing versus using modules of your EHR out of the box?
How are hardware and software best updated in a safe manner?
How are EHR safety issues monitored and measured?
What process do you use for correcting errors in the patient record when those errors are identified by patients, caregivers, nurses, and others?
How does the use of outside contractors or consultants impact safety?
4. Governance
How do the various safety-related committees relate to the clinicians?
How do safety-related committees relate to one another? Who sets clinical priorities and how has that changed over time?
How have the committees changed over time and why?
5. Clinicians [licensed healthcare professionals, including physicians, nurses, and others]
What have been the biggest challenges to clinician involvement in EHR safety and how were they addressed?
What types of training and support related to EHR safety are offered to clinicians?
How do clinicians seem to feel about EHR safety?
How do they provide feedback about EHR safety?
What is the best way to get clinicians to do internal reporting of adverse events related to the EHR?

EHR: electronic health record; HCI: human computer interaction.

Analysis

All data from the interviews and observations were entered into NVivo 10 (QSR International, Doncaster, Victoria, Australia). We analyzed the data twice, once in a deductive manner to inform development of the guides and once inductively to generate patterns and themes for the present study. Data from the semi-structured interviews and fieldnotes were first analyzed using the template (more deductive) method of analysis identifying topics within the documents that we needed to explore for development of the SAFER guides. Two researchers read and coded each document, agreeing on which quotes were relevant to each guide. The entire team then met virtually to review each quote and perform subcoding for each guide. From the quotes clumped into each subcode, the team derived many of the recommendations outlined in the SAFER guides. Data used to develop the guide about Organizational Responsibilities for EHR safety were used for this sub-study, for which we conducted an additional more inductive analytical process. We coded all fieldnotes and transcripts again, using a grounded hermeneutic approach to discover patterns and themes specifically related to activities performed by individuals across sites.²⁵ Again, two researchers did initial coding of the data, reached consensus on codes, proceeded to code all the data, and the entire research team met to agree on patterns and themes.

Results

Table 2 provides information about the sites and data collected at each site. In total, we conducted 92 semi-structured interviews and spent 69 h observing.

Table 2.

Sites and subjects.

	Geisinger Health System	Family Physicians Group	The Alliance of Chicago	Four independent Colorado clinics	Partners Healthcare
Location	Danville, PA	Orlando, FL	Chicago, IL	Lakewood and Colorado Springs, CO	Boston, MA
Characteristics of setting	Community health system	Large primary care practice	30 + Federally qualified health centers across United States	Small independent private clinics	Academic and community health system
Type of EHR	Commercial (Epic)	Commercial (GE Centricity)	Commercial (GE Centricity)	Four ambulatory commercial systems	Locally developed and commercial
Date of visit	June 2012	July 2012	August 2012	September 2012	October 2012
Hours observing	NA	15	28	6	20
Num. clinics observed	NA	3	3	4	4
Num. interviews	20	12	16	14	30

EHR: electronic health record.

Table 3 shows a list of the areas and activity groups, along with representative quotes about each. We identified 10 groups of activities that people or teams involved in EHR safety perform. These activities fall into three large areas.

Table 3.

Areas, activities, and representative quotes.

Area	Activity group	Representative quotes (author clarifications are in brackets)
A. Decision-making
	(1) Overseeing EHR safety	“They report it, and they report it back to me.” [need a person responsible for gathering user input about EHR safety risks]
		“One of the committees … combination of people from HIM, legal, IT, operations … prompt you to think about this piece or that piece so that might be a patient safety type checklist.” [need committees to oversee EHR safety]
		“And then having a dedicated resource that thinks through the issues, for instance on medication preference lists we have an EPIC optimization group which is like 8 docs who get together virtually once a month and once a quarter physically. Now they’ll think through how should this screen be set up, what should it look like.” [need committees to oversee EHR safety]
	(2) Planning for EHR safety	“If they do a root cause analysis we work with regulatory performance improvement to try to create some sort of action plan and then try to implement that to prevent something from happening again.” [need committees to plan for EHR safety]
		“Probably committees is what I’m most familiar with and that’s how we function here … We spent a lot of time here brainstorming ideas so that would be maybe the first step and then actually pulling it together would be the second step. And then perhaps taking that checklist and vetting it with others once it was completed. So our quality and safety department would also have to play a huge role in that and I would see them maybe leading that charge.” [need leadership and committees to plan for EHR safety]
	(3) Reviewing EHR safety	“We have an EHR correction work group and we talk about the errors and is there something in the system setup that could be changed.” [need committee to review errors]
		“And any time a medication is added or removed from an order set, it goes to the pharmacy therapeutics committee to review.” [need committee to prevent errors]
		“So senior leadership, executive leadership is notified and is well aware of, you know, what those issues are whether it goes up to the Board of Trustees or not. Now, a lot of the things like observed to expected mortality, cancellation rates, those sorts of things are reported to the board on a quarterly basis.” [need committees to review errors to put systems in place to prevent future errors]
B. Organizational learning
	(1) Monitoring EHR safety	“we did our own analysis here because I get a report of the drug interaction alerts, you know what I’m saying? And then what I did is—figure out how many were overridden. I can tell you how many overrides come from our drug interaction, and then … what I do with that report is I look for things that are repeating. That either get overridden all the time and they shouldn’t have been. And then we try to build another level of safety on that or, that shouldn’t be firing and then we remove those so that the physicians aren’t getting as much noise.” [review reports for anomalies]
		“And if there’s a commitment to directly measure outcomes once the implementation takes place to make sure that what’s supposed to happen is actually happening so that if there needs to be changes. So it’s not a fire and forget sort of thing and we turn it on, and then we go on to our next project. It’s we have dashboards. We have information coming back in that tells us whether this is working or is it not working. And what that allows then is a very—a rapid cycle improvement that allows a very high degree of reliability so that we know that it’s actually working, that it’s doing what it’s supposed to do and we can measure the impact at the patient level about what’s happening there.” [review reports for anomalies]
	(2) Testing	“I mean we press every button and test every link in three different environments.” [testing to prevent EHR-related risks]
		“We do a tremendous amount of testing before any release upgrade. The team reads all of the release notes. We do integrative testing, unit testing. We do a dry run. We do testing where we have two weeks where almost all hands are on deck just the first two weeks that the new software is loaded into a test system to see what we’re breaking.” [testing to prevent EHR-related risks]
		“We do conduct usability testing with our end users to ensure that they’re not seeing any issues from a release upgrade perspective.” [testing to prevent EHR-related risks]
	(3) Analyzing	“We have people in EPIC that we contact to ask questions. We’ve done root-cause analysis where we—part of the action plan has to do with creating something in EPIC, talking about a hard stop, talking about an alert, things like that.” [analysis performed to prevent EHR-related safety risks]
	(4) Reporting	“Our HIM folks have a report every day where something has been changed and they go back and they try to identify what happened.” [review of reports to identify risks]
		“And so we have reports that we—so that, you know, that we know that things flow to in-baskets and we have in-basket reports so that we can see how timely our staff is at reviewing their lab results. Our department directors [pass these on] so that the supervisors of those physicians would look at those and report those out on a monthly basis.” [review of reports to identify risks]
C. User-related activities
	(1) Training	“We’ve spent a lot of time developing training materials … We try to make it scenario-based so with an upgrade, we give docs a scenario and stuff and say here’s how the system has changed.” [preventing user errors due to upgrades]
		“I think that to the extent that the software changes however and the release upgrade and the idea of continual training and getting people up to speed, I think is really a technical issue.” [preventing user errors due to upgrades]
	(2) Communicating	“We communicate to death, you know, what our plans are. And we actually do a process that’s called ‘a minimal downtime release’ so that instead of doing everything that’s required to flip over to the new version, instead of doing that all within that downtime window, we can stagger it over a couple days, to keep our downtime window smaller than it would have to be if we did a regular conventional upgrade.” [letting users know about downtimes]
		“So whenever we have scheduled downtimes, we usually do them about 3 or 4 o’clock in the morning. We warn everybody in advance.” [letting users know about downtimes]
	(3) Building safe CDS	“We are building information to prompt them how to adjust the doses based on their current degree of renal dysfunction, or, if the drug is contraindicated at a certain level of renal dysfunction, and then we would prompt that drug is contraindicated and give a list of several other drugs that could be used for the same indication as alternatives that could be given in patients with decreased renal [function].” [building CDS that is safe]

EHR: electronic health record; CDS: clinical decision support; HIM: health information management.

The first category, Area A, is decision-making related to safety. This was usually done at higher levels in the organization by individuals in leadership positions working on committees.

Area A: decision-making

Activity 1: overseeing EHR safety

Although the organizations we visited did not employ people expressly to oversee EHR safety, the larger ones had individuals who played the role of patient safety officer and, through committees, EHR safety issues were addressed. Subjects told us that these organizations were primarily reactive rather than proactive in that policies were in place for analyzing and rectifying problems, but a proactive EHR safety plan was not yet available.

Activity 2: planning for EHR safety

As noted, plans were usually made in response to issues, but these were usually general patient safety risk assessment plans. While they were not EHR-specific, they did often include some EHR-related wording. We were told at all the sites that when the SAFER guides became available, they would become desirable planning tools.

Activity 3: reviewing for EHR safety

This included activities done by committees, often CDS-related. These committees did not often address safety directly, but they kept EHR safety in mind as they made decisions about what CDS to develop or buy and what to eliminate. Individuals at all of the sites talked about wanting to avoid over-alerting providers because safety risks might increase if providers ignore important alerts.

Area B: organizational learning

The second area of activities is organizational learning. These are activities performed primarily by informatics and IT staff members.

Activity 1: monitoring for EHR safety

Staff members in these organizations tried to continuously monitor both the functionality and usage of the EHR so that unintended consequences could be avoided. They made sure that hardware, servers, backup tapes, software, and content were configured correctly and working appropriately. For example, someone would be looking at reports of response time, so if the EHR started responding more slowly than normal, that person could investigate the problem immediately. Interviewees told us they would like to have the manpower to do more monitoring, however.

Activity 2: testing

These organizations performed several types of testing before any changes were made to the EHR, most notably before an upgrade. IT staff members involved clinical users for usability testing in addition to testing in different environments (a test environment and operational environment, for example) to assure safety.

Activity 3: analyzing

This usually took the form of performing root cause analyses when problems were reported. Not only did staff members investigate the multiple causes of errors that were reported, but they also generally did follow-up for purposes of continuous quality improvement and avoidance of the problem occurring again. In most patient safety events, more often than not, the EHR was only one of multiple causes.

Activity 4: reporting

Reporting took many forms. Users were encouraged to report problems with safety implications to informatics/IT staff. Staff members then reported certain software problems to the vendor. In addition to these reactive reporting efforts, reports were sometimes monitored on an ongoing basis, often by the HIM professionals, so that issues could be addressed proactively as well.

Area C: user-related activities

While decision-making was done by leaders and committees and organizational learning was accomplished by informatics and IT-related staff members, other critical activities involved users more directly.

Activity 1: training

We were told that the education and training of all staff members who used the EHR was needed on an ongoing basis. Not only did users need to learn how to use the system and be constantly aware of changes which could pose risks, especially when upgrades occurred, but they also needed to learn the importance of accuracy to avoid input errors.

Activity 2: communicating

Two-way communication is vital for EHR safety, we were told. We observed that users needed to know about changes in the system, but they also needed to feel free to communicate back to staff members and report problems. Even patients needed to be urged to communicate through patient portals to assure the accuracy of information.

Activity 3: building and managing safe CDS

While leadership committees oversaw CDS, staff members built, modified, and kept track of it. Subjects noted that over-alerting can generate errors when users disregard appropriate alerts. EHR users played a role in that clinicians were usually involved in developing CDS as well. While CDS was implemented for quality or efficiency purposes, it sometimes also provoked dangerous unintended consequences. Therefore, subjects stressed that CDS needs testing and monitoring by staff and problems need to be reported by users.

Discussion

We have identified three areas and nine groups of activities that are perceived to be critical for EHR safety within healthcare organizations of any size. These activities must become the responsibility of identified individuals within organizations because otherwise they might be neglected. This is the first large qualitative study with EHR safety as its focus, and it has been useful in informing development of not just the Organizational Responsibilities SAFER guide, but the other SAFER guides as well. One limitation of this study is that although we attempted to select representative, excellent organizations as study sites, the results may not be generalizable to all healthcare organizations. In addition, the data were collected 6 years ago. However, the SAFER guides were updated in 2016, with a thorough review of the literature conducted for that purpose, and the results presented here remain relevant and timely.

Prior research about EHR safety¹⁸ has indicated that organizational and behavioral aspects are important, but those aspects have not been the main focus of any studies. For example, Zhan et al.²⁷ found that of 7029 CPOE-related medication errors reported in 2003, 0.1 percent resulted in adverse events and the greatest contributing factor to these particular errors was the presence of human distraction in 8 out of 10 cases. Santell et al.²⁸ likewise found that harm is low but that most errors came from inpatient pharmacy input of data, again a behavioral issue.

The results of this study have implications for a variety of stakeholders within healthcare organizations. Decision makers at the highest levels within these organizations should become aware that the EHR can increase patient safety risk and therefore liability, and they can take action to decrease that risk. They should hire people to perform the activities outlined in this article. This study highlights the need for continuous careful monitoring of systems so that organizational learning can instigate change each time something goes wrong. IT and informatics leaders must assure that users are adequately trained and also deeply involved in higher-risk EHR-related activities like developing or modifying CDS.

Future research about the organizational aspects of EHR safety should include exploration of the extent of generalizability of these qualitative findings through survey methods, research about the impact and use of the organizational effectiveness SAFER guide recommendations which are based on this study, and identification of best practices for reviewing, prioritizing, and implementing the myriad recommendations that make up the SAFER guides.

The most important implication of our results is that people within organizations must be assigned to cover all of the activities needed to ensure EHR safety. These essential activities are conducted by a broad range of individuals within organizations who come together to work as a team, most often on multidisciplinary committees. Such teams should include organizational leaders, clinicians, IT and informatics professionals, other administrative staff, and even patients. Therefore, all of these types of people must be made aware of their shared responsibility for keeping the EHR safe.

Conclusion

EHR safety can be improved by the performance of activities related to group decision-making, organizational learning, and user-related tasks outlined in our results. While roles and job titles differ across organizations, the responsibility for accomplishing these essential activities must be shared by explicitly identified individuals and teams.

Footnotes

Acknowledgements

We would like to thank Colleen Tercek for her assistance with analysis.

Declaration of conflicting interests

The author(s) declared no potential conflicts of interest with respect to the research, authorship, and/or publication of this article.

Funding

The author(s) disclosed receipt of the following financial support for the research, authorship, and/or publication of this article: This project was supported through a subcontract from Westat (HHSP-23320095655WC0095655, Anticipating the Unintended Consequences of Health IT) funded by the Office of the National Coordinator for Health Information Technology (ONC) (HHSP23337003 T). Dr. Singh is supported in part by the Houston VA Health Services Research and Development Center for Innovations in Quality, Effectiveness and Safety (CIN13-413).

References

Kilbridge

Classen

DC.

The informatics opportunities at the intersection of patient safety and clinical informatics. J Am Med Inform Assoc 2008; 15(4): 397–407.

Metzger

Welebob

Bates

, et al. Mixed results in the safety performance of computerized physician order entry. Health Aff 2010; 29(4): 655–663.

Sittig

Singh

Eight rights of safe electronic health record use. JAMA 2009; 302(10): 1111–1113.

Sittig

Ash

JS.

Clinical information systems: overcoming adverse consequences. Sudbury, MA: Jones and Bartlett Publishers, LLC, 2009.

Campbell

Sittig

Ash

, et al. Types of unintended consequences related to computerized provider order entry. J Am Med Inform Assoc 2006; 13(5): 547–556.

Harrington

Kennerly

Johnson

Safety issues related to the electronic medical record (EMR): synthesis of the literature from the last decade, 2000-2009. J Healthc Manag 2011; 56(1): 31–43; discussion 43–44.

Horsky

Kuperman

Patel

VL.

Comprehensive analysis of a medication dosing error related to CPOE. J Am Med Inform Assoc 2005; 12(4): 377–382.

Koppel

Metlay

Cohen

, et al. Role of computerized physician order entry systems in facilitating medication errors. JAMA 2005; 293: 1197–1203.

Leviss

H.i.t. or miss: lessons learned from health information technology implementation. Chicago, IL: American Health Information Management Association, 2010.

10.

Magrabi

Ong

Runciman

, et al. An analysis of computer-related patient safety incidents to inform the development of a classification. J Am Med Inform Assoc 2010; 17(6): 663–670.

11.

Magrabi

Ong

Runciman

, et al. Using FDA reports to inform a classification for health information technology safety problems. J Am Med Inform Assoc 2012; 19(1): 45–53.

12.

McDonald

CJ.

Computerization can create safety hazards: a bar-coding near miss. Ann Intern Med 2006; 144(7): 510–516.

13.

Nerich

Limat

Demarchi

, et al. Computerized physician order entry of injectable antineoplastic drugs: an epidemiologic study of prescribing medication errors. Int J Med Inform 2010; 79(10): 699–706.

14.

Sittig

Wright

Ash

, et al. New unintended adverse consequences of electronic health records. Yearb Med Inform 2016; 25(1): 7–12.

15.

Sittig

Singh

Defining health information technology-related errors: new developments since to err is human. Arch Intern Med 2011; 171(14): 1281–1284.

16.

Sittig

Singh

A new sociotechnical model for studying health information technology in complex adaptive healthcare systems. Qual Saf Health Care 2010; 19(Suppl. 3): i68–i74.

17.

Institute of Medicine. Health it and patient safety: building safer systems for better care. Washington, DC: The National Academies Press, 2012.

18.

Improving patient care through safe health IT: a report from the PEW Charitable Trusts. Washington, DC: The PEW Charitable Trusts, December 2017, http://www.pewtrusts.org/~/media/assets/2017/12/hit_improving_patient_care_through_safe_health_it.pdf (accessed 4 February 2018).

19.

SAFER guides: safety assurance factors for EHR resilience. Office of the National Coordinator for HIT, January 2014 (updated 2016), https://www.healthit.gov/topic/safety/safer-guides (accessed 25 April 2018).

20.

Ash

Gorman

Lavelle

, et al. Multiple perspectives on physician order entry. In Proceedings of the AMIA symposium, Los Angeles, CA, 4–8 November 2000, pp. 27–31. Philadelphia, PA: Hanley & Belfus.

21.

Wright

Ash

Erickson

, et al. A qualitative study of the activities performed by people involved in clinical decision support: recommended practices for success. J Am Med Inform Assoc 2014; 21(3): 464–472.

22.

Linstone

HA.

Decision making for technology executives: using multiple perspectives to improve performance. Boston, MA: Artech House, 1999.

23.

Sittig

Ash

Singh

ONC issues guides for SAFER EHRs. J AHIMA 2014; 85(4): 50–52.

24.

Singh

Ash

Sittig

DF.

Safety assurance factors for electronic health record resilience: study protocol. BMC Med Inform Decis Mak 2013; 13: 46.

25.

McMullen

Ash

Sittig

, et al. Rapid assessment of clinical information systems in the healthcare setting: an efficient method for time-pressed evaluation. Methods Inf Med 2011; 50(4): 299–307.

26.

Ash

Sittig

McMullen

, et al. A rapid assessment process for clinical informatics interventions. AMIA Annu Symp Proc 2008; 2008: 26–30.

27.

Zhan

Hicks

Blanchette

, et al. Potential benefits and problems with computerized prescriber order entry: analysis of a voluntary medication error-reporting database. Am J Health Syst Pharm 2006; 63(4): 353–358.

28.

Santell

Kowiatek

Weber

, et al. Medication errors resulting from computer entry by nonprescribers. Am J Health Syst Pharm 2009; 66(9): 843–853.

Essential activities for electronic health record safety: A qualitative study

Abstract

Keywords

Introduction

Primary objective

Methods

Selection of sites

Selection of subjects

Data collection methods

Analysis

Results

Area A: decision-making

Activity 1: overseeing EHR safety

Activity 2: planning for EHR safety

Activity 3: reviewing for EHR safety

Area B: organizational learning

Activity 1: monitoring for EHR safety

Activity 2: testing

Activity 3: analyzing

Activity 4: reporting

Area C: user-related activities

Activity 1: training

Activity 2: communicating

Activity 3: building and managing safe CDS

Discussion

Conclusion

Footnotes

Acknowledgements

Declaration of conflicting interests

Funding

References