Obamacare Privacy Fears Loom as Computer Links Agencies
The biggest overhaul of the U.S. health-care system in 50 years has spawned one of the most complex computer projects in the government’s history.
Dubbed the Hub, the $267 million computer system built by a unit of UnitedHealth Group Inc. (UNH) is one of the most important determiners of whether the Affordable Care Act succeeds. The hub ties together the databases of seven U.S. agencies, ranging from the Internal Revenue Service to the Peace Corps, to determine which Americans can buy medical coverage and get U.S. subsidies through the new government-run insurance exchanges.
Marilyn Tavenner, the Medicare chief whose agency will oversee the hub, is set to report in a congressional hearing today that the system’s construction is complete and testing will be finished by Sept. 1, a month before the exchanges open. Security, a subject scrutinized by Republicans, will be assured through strict rules on standards that all parties who use the hub must sign, U.S. officials said.
“We have been engaged in a great deal of discussions to make sure these standards are incredibly strong,” said Chiquita Brooks-Lasure, the deputy director of the Center for Consumer Information and Insurance Oversight, in a telephone interview.
About 7 million people may seek coverage through the exchanges, the Congressional Budget Office has said. The hub’s job is to confirm personal characteristics that include their identity, citizenship, income and family size -- even whether they’re incarcerated -- as a way to determine eligibility. The system also will weed out applicants who may be able to access other U.S. health programs, including current or former military members and Peace Corps volunteers.
The system’s broad reach has raised concerns among Republicans who have said they fear consumer privacy could be threatened by computer hackers who target the system, sloppy handling of equipment used to access the data or, more nefariously, by government officials who may misuse the information that’s collected.
“It’s information on 300 million Americans, all compiled in one place -- what could go wrong?” said Representative James Lankford, the Oklahoma Republican presiding over today’s hearing, in a telephone interview. “They’re going to have to assure a lot of Americans that their information is going to be held safe, and that there’s a purpose for that.”
Lawmakers and critics of Obamacare point to incidents involving the insurers that will be sending data into the hub and the government. In the most recent example, WellPoint Inc. (WLP) last week paid $1.7 million to settle potential violations of U.S. privacy laws when a company website left the health data of 612,402 customers unprotected over the Internet.
Some of the concerns may be misguided, Brooks-Lasure said. For instance, the hub can only access information about potential enrollees and there’s no central storage area for data, she said. It is designed to serve as a sort of central nervous system for the exchanges, using software levers to route eligibility queries from the online marketplaces to the appropriate U.S. agencies, and then back with the needed data.
The hub was developed by Quality Software Services Inc. of Bethesda, Maryland, which has received $49.5 million since 2011 to do the work, according to data compiled by Bloomberg Government. Last year QSSI was acquired by Minnetonka, Minnesota-based UnitedHealth, the nation’s largest health insurer.
“From a pure technology perspective it’s very impressive,” said Stephen Parente, a health economist and information technology expert at the University of Minnesota who served as an adviser to Senator John McCain, an Arizona Republican, in his 2008 presidential campaign.
Still, the hub will be “for lack of a better term, a hacking target,” he said in a telephone interview.
Tavenner, the chief of the Centers for Medicaid and Medicare Services, will defend the safety of the system before Congress today, according to prepared testimony obtained by Bloomberg.
In the exchanges run by the federal government, only “authorized CMS personnel” will be able to access personal data using “password security, encryptions, firewalls and secured operating systems,” Tavenner will say, according to the prepared comments. Her agency “has a robust security monitoring system that reviews all security events, tools, requirements, and network device logs to identify, assess, and manage vulnerabilities and threats.”
Additionally, exchanges run by states will have to pass a federal “privacy impact assessment” before they’re allowed to use the hub to access federal databases, according to Tavenner’s prepared comments.
While the Obama administration considers the hub complete, a key function it was designed to handle won’t work perfectly by Oct. 1. The system is supposed to verify whether people who buy insurance at exchanges are eligible for federal subsidies to help with monthly premiums. That depends on an applicants’ current income, something the hub won’t know from querying IRS tax records, which can be a year out of date or more.
Applicants will be asked to attest to their current income. For people who report income 10 percent more or less than the most recent tax return, or if there is no recent tax return and the hub can’t access data verifying income, a random sample of applicants will be asked to provide additional documentation.
“On Oct. 1 the hub will not be at the level of functionality that was originally anticipated by HHS,” said Dan Schuyler, a director at Leavitt Partners in Salt Lake City, a health consulting firm founded by Michael Leavitt, a Health and Human Services secretary under President George W. Bush.
To contact the reporter on this story: Alex Wayne in Washington at email@example.com
To contact the editor responsible for this story: Reg Gale at firstname.lastname@example.org