Last week, a story came across my feed that seems to have been almost completely ignored by most who are in/or follow medicine and health systems. WELL Health technologies announced that it has purchased 100% of CognisantMD, the developers of the Ocean platform. For those who don’t know, Ocean is a platform that links to various EMRs and allows for securely emailing patients, eReferrals, filling out forms online, and a bunch of other features.
Full disclosure, my practice uses Ocean as well (for now). Personally I find it somewhat clunky and not as smooth as advertised, but there are some positive features to it.
What’s the problem then? It’s a friendly corporate takeover. Happens all the time in the business world.
To understand the concerns, let’s look at what WELL Health does. According to their own website, WELL Health offers a wide array of digital health care solutions. But they also state they are “Canada’s largest outpatient medical clinic owner-operator and leading multi-disciplinary telehealth service provider”. In essence, they run the clinics, and physicians work for them.
A further dive into their strategy, under the “Reinvest” tab states:
“Acquisition of cash generating companies leads to increased cash flows which are re-invested to make additional new cash generating acquisitions.”
Pure and simple – WELL Health is a private, for profit corporation. There is of course, nothing wrong with private corporations. Most people who follow my twitter feed know that I am generally pro-business, and on most issues land on the right side of the political spectrum. I firmly believe we need more, not less, businesses in this country and we need to make it easier for businesses to function.
BUT – acquisitions like these, and the continued take over of clinics by corporations should make us ask legitimate questions about protection of individual health care data. It is no secret that the reasons that companies like Google and Facebook have become so successful is that they found a way to monetize personal data. In much the same way, personal health care data has enormous economic value to companies. Whoever can find a way to properly monetize this, will be the next Jeff Bezos/Mark Zuckerberg and so it’s no wonder that companies are extremely interested in getting into this field.
As I mentioned in a previous blog, Shoppers Drug Mart, for example, recently acquired a stake in Maple, a leading virtual care only provider for $75 million. They continue to advertise on their website (as of Dec 6, 2021) the ability to diagnose strep throat virtually (which personally I find questionable) and then to send antibiotics to a pharmacy near you (I’m guessing there is going to be a Shoppers Drug Mart near you).
In a circumstance where a patient contacts Maple, the doctor or NP gets paid to virtually assess a patient, Maple gets a percentage of the fee to cover overhead – which presumably will be reflected in shareholder value to Shoppers. If a prescription gets sent to a Shoppers, well, they make a profit there too. Neat business model.
But it’s not just companies that already have an interest in providing health care related services that are trying to get involved in this field. Amazon is jumping into health care with a telemedicine initiative. Google has long planned to get into health care, and while not terribly successful yet, I doubt they will stop trying. Heck even Uber (!) wants to get involved in health care.
It’s easy to see why everyone wants in. There is a lot of money and potential profit in health care. And while I am all for companies making a profit, that doesn’t mean that we can’t ask some hard questions about the protection of personal health care data such as:
- How secure is the data that is being held in the servers owned by these corporations?
- How do we ensure personal health data doesn’t go where it’s not authorized? (eg. supposing the parent company owned a family practice clinic AND an disability insurance company)
- How do we ensure personal health data is not to be used to monetize other aspects of a business (eg. supposing a walk-in clinic was owned by a pharmacy. A patient attends there for a renewal of cholesterol medications, and then gets ads offering, say, flax seed oil capsules that are helpfully sold by that same pharmacy).
- How do we ensure aggregate health data housed in those servers is only used to help the community at large (eg. finding communities that may need extra resources for, say opiod addiction).
- If a physician stops working at a clinic owned by MegaCorp Inc. for whatever reason, how does that physician access their charts after the fact (I’m aware of a number of cases where access to patient records were cut off immediately upon the physician leaving such a clinic).
I’ve just posited a few questions. I’m sure there are many more. I believe that most Canadians strongly value health care privacy. As more and more businesses attempt to get involved in health care delivery, it is vital that we have a framework for oversight that ensures that patients have the absolute right to protect their personal health information. Sadly, I don’t see any organization/government agency out there asking these important questions.