What Is an Electronic Medical Record (EMR)?
An electronic medical record is used by one organization to store data about a patient.
Neisa Jenkins, professor at the College of Health Sciences at DeVry University and president of the Georgia Health Information Management Association, defines an EMR as an electronic record that contains information about an individual or specific patient within a single healthcare organization. This information — including health, demographic and financial data — is created and accessed by clinical and nonclinical staff. In practice, this means that EMRs are typically nontransferable between practices.
“An EMR is restricted to a single medical practice,” says Neil Lappage, public sector solutions lead at ITC Secure and adviser for ISACA’s Emerging Technology Advisory Group. “If such information had to be sent to another practice, it would likely be sent in paper form and, depending on the type of practice, the information could contain both clinician notes and diagnostic information.”
What Is an Electronic Health Record (EHR)?
An electronic health record is shared between organizations.
“An EHR is an electronic record that contains information about an individual or specific patient within an enterprise healthcare system that consists of more than one organization,” says Jenkins.
As noted by Lappage, “EHRs contain information about a patient throughout their journey visiting different healthcare practices. They combine both diagnostic information on patients and notes from medical clinicians. EHRs also improve patient-centered care. Due to the speed that results are shared between clinicians, decisions can be made more quickly, and the patient ultimately experiences smoother transition and response times from medical practices.”
EHRs vs. EMRs: What’s the Difference?
While the primary distinction between these two record types is that EHRs are shared among organizations while EMRs are not, Lappage and Jenkins point to other key differentiators, including:
- Interoperability: “An EHR communicates with other systems,” says Jenkins, “which is a concept known as interoperability. EHRs are multifunctional and used for everything from documentation and medication management to clinical decision support, reporting and analytics, and results management.”
- Accessibility: Accessibility is another key difference between EHRs and EMRs. While EHRs are accessible by patients — and will soon be available for digital download — EMRs are not. This availability stems from EHR interoperability, which in turn requires records standardization. As noted by Lappage, “there is now a need for systems to talk in common formats. This is where integration standards such as Health Level 7 (HL7) come in since they use a standardized format to send data.”
- Security: “From a cybersecurity perspective, an EHR is a much more valuable target,” says Lappage, “since it contains the entire journey of a patient as they move between practices. Where the stakes get higher is through the accessibility of such information. Due to the nature of EMRs not being accessible to patients, it also means they are much harder to access by adversaries trying to steal information.” EHRs, meanwhile, offer a tempting target for attackers looking to obtain information-rich healthcare data they can ransom, steal or sell.
Which Type of Medical Record Is Right for Your Healthcare Organization?
Both EMRs and EHRs offer value for healthcare organizations. In many cases, both types are used within a single medical practice depending on the nature and purpose of the patient data recorded.
For example, while hospitals and larger health enterprises typically use EHRs to provide a comprehensive view of patient care, they may also opt for EMRs to track specific patient data over time to help create patient-specific health plans. EHRs, meanwhile, are ideal for facilitating data sharing across multiple levels of a healthcare organization — from emergency room doctors and nurses to specialists and management teams — without increasing operational complexity.