健康科技 服務加值
Health IT and Value-added Services
 5
 is also continuing to provide contracted medical organizations even more convenient electronic reporting services. For example, the introduction of e-certificates use to log onto the health insurance information network in January 2012 has provided medical institutions a more integrated authorization management system and enhanced the security of electronic network services. The NHIA also expects that its promotion of the exchange of medical imaging files between medical facilities will reduce the number of unnecessarily duplicated examinations and tests, while promoting the information exchange between hospitals.
Accelerating Digital Management of NHI Cards
To enhance the public’s healthcare convenience, NHIA introduced IC health insurance cards on January 1, 2004 as a replacement for the previously- used paper cards and child healthcare handbooks, maternity healthcare handbooks, and catastrophic illness certification cards. The information that had been previously recorded on these four types of documents has now been encrypted and encoded in the new card’s embedded chip. Alongside greater convenience, this shift also protects users’ medical privacy. In addition, since the data in the MediCloud system has a 2 to 3-days lag, but drugs and test (checkup) items stored in the NHI Card serve as immediate references for physicians during diagnosis and treatment.
Because hospitals and clinics must enter patients’ visit records onto their health insurance cards, and then transmit this information to the NHIA within 24 hours, the NHIA is able to monitor daily outpatient and inpatient use person-times statistics, and is able to quickly discover and track irregular healthcare behavior, and provide prompt
assistance. In addition, insureds can also note willingness to donate organs or desire not to be resuscitated or be given hospice care on their NHI cards.
Using Multiple Mechanisms to Ensure Information Security
NHI cards not only ensure privacy, but also facilitate the smooth flow of information through Taiwan’s online medical information platform. The NHI card has received international recognition for its security management on several occasions. To safeguard information security, the card provides several anti-forgery features, and the embedded chip employs a number of mutual verification mechanisms intended to maintain data security.
Health insurance information is transmitted via the NHIA’s dedicated VPN, which has multiple firewalls in an effort to reduce risk of hackers breaking into the system or stealing data. In addition, NHI cards records are entered in encoded form and encrypted during transmission, which effectively safeguards personal privacy.
To strengthen health insurance card and health insurance data safety management mechanisms, the NHIA established an information security task force in August 2003 responsible for managing security-related tasks and completion of system certification. In June and August of 2004, the NHI card’s key management system (KMS) and IC Card Data Center (IDC) received BS7799 and CNS17800 security certification from the British Standards Institution (BSI) . The NHIA was the first government organization in Taiwan to receive CNS17800 certification from the Taiwan Accreditation Foundation (TAF) under authorization from the BSI.
61
Chapter