Public standards and patients' control: how to keep electronic medical records accessible but private. BMJ:
" Electronic medical record systems should be designed so that they can exchange all their stored data according to public standards.
Giving patients control over permissions to view their record---as well as creation, collation, annotation, modification, dissemination, use, and deletion of the record---is key to ensuring patients' access to their own medical information while protecting their privacy
Many existing electronic medical record systems fragment medical records by adopting incompatible means of acquiring, processing, storing, and communicating data
Record systems should be able to accept data (historical, radiological, laboratory, etc) from multiple sources including physician's offices, hospital computer systems, laboratories, and patients' personal computers
Consumers are managing bank accounts, investments, and purchases on line, and many turn to the web for gathering information about medical conditions; they will expect this level of control to be extended to online medical portfolios"