Characteristics of health IT outage and suggested risk management strategies: an analysis of historical incident reports in China

Jianbo Lei; Pengcheng Guan; Kaihua Gao; Xueqin Lu; Yunan Chen; Yuefeng Li; Qun Meng; Jiajie Zhang; Dean F Sittig; Kai Zheng

doi:10.1016/j.ijmedinf.2013.10.006

Characteristics of health IT outage and suggested risk management strategies: an analysis of historical incident reports in China

Int J Med Inform. 2014 Feb;83(2):122-30. doi: 10.1016/j.ijmedinf.2013.10.006. Epub 2013 Oct 22.

Authors

Jianbo Lei¹, Pengcheng Guan², Kaihua Gao², Xueqin Lu², Yunan Chen³, Yuefeng Li⁴, Qun Meng⁴, Jiajie Zhang⁵, Dean F Sittig⁵, Kai Zheng⁶

Affiliations

¹ Center for Medical Informatics, Peking University, Beijing, China; School of Biomedical Informatics, University of Texas Health Sciences Center at Houston, Houston, TX, USA. Electronic address: jblei@hsc.pku.edu.cn.
² Center for Medical Informatics, Peking University, Beijing, China.
³ Donald Bren School of Information and Computer Sciences, University of California, Irvine, CA, USA.
⁴ Center for Statistics and Informatics, Ministry of Health, China.
⁵ School of Biomedical Informatics, University of Texas Health Sciences Center at Houston, Houston, TX, USA.
⁶ School of Public Health Department of Health Management and Policy, University of Michigan, Ann Arbor, MI, USA; School of Information, University of Michigan, Ann Arbor, MI, USA.

PMID: 24246272
DOI: 10.1016/j.ijmedinf.2013.10.006

Abstract

Background: The healthcare industry has become increasingly dependent on using information technology (IT) to manage its daily operations. Unexpected downtime of health IT systems could therefore wreak havoc and result in catastrophic consequences. Little is known, however, regarding the nature of failures of health IT.

Objective: To analyze historical health IT outage incidents as a means to better understand health IT vulnerabilities and inform more effective prevention and emergency response strategies.

Methods: We studied news articles and incident reports publicly available on the internet describing health IT outage events that occurred in China. The data were qualitatively analyzed using a deductive grounded theory approach based on a synthesized IT risk model developed in the domain of information systems.

Results: A total of 116 distinct health IT incidents were identified. A majority of them (69.8%) occurred in the morning; over 50% caused disruptions to the patient registration and payment collection functions of the affected healthcare facilities. The outpatient practices in tertiary hospitals seem to be particularly vulnerable to IT failures. Software defects and overcapacity issues, followed by malfunctioning hardware, were among the principal causes.

Conclusions: Unexpected health IT downtime occurs more and more often with the widespread adoption of electronic systems in healthcare. Risk identification and risk assessments are essential steps to developing preventive measures. Equally important is institutionalization of contingency plans as our data show that not all failures of health IT can be predicted and thus effectively prevented. The results of this study also suggest significant future work is needed to systematize the reporting of health IT outage incidents in order to promote transparency and accountability.

Keywords: Accident prevention; Electronic health records; Failure prediction; Failure recovery, maintenance and self-repair; Health information system; Patient safety; Safety critical systems.

Publication types

Research Support, Non-U.S. Gov't

MeSH terms

China
Humans
Medical Informatics*
Patient Safety
Risk Management / organization & administration*