Stanford authors: Evolutionary Pressures on the Electronic Health Record - "Deimplementing the EHR could actively enhance care in many clinical scenarios"

A brief post.  In this new JAMA article by Stanford authors:

Evolutionary Pressures on the Electronic Health Record
http://jama.jamanetwork.com/article.aspx?articleid=2545405 

Donna M. Zulman, MD, MS^1,2; Nigam H. Shah, MBBS, PhD³; Abraham Verghese, MD⁴

I note the passage:

... Deimplementing the EHR could actively enhance care in many clinical scenarios. Simply listening to the history and carefully examining the patient who presents with a focused concern is an important means of avoiding diagnostic error.7 Many phenotypic observations (the outline of a cigarette packet in a shirt pocket, or spotting neurofibroma, fasciculation, or rash) change the diagnostic algorithm and are easy to miss when work revolves around the computer and not the patient.

I predict pushback against such a bold and contrarian "de-implementation" assertion (contrarian to the hyper-enthusiast and industry narratives, that is).

The authors continue:

There is building resentment against the shackles of the present EHR; every additional click inflicts a nick on physicians’ morale. Current records miss opportunities to harness available data and predictive analytics to individualize treatment. Meanwhile, sophisticated advances in technology are going untapped. Better medical record systems are needed that are dissociated from billing, intuitive and helpful, and allow physicians to be fully present with their patients.

 

I also wrote the primary author with a link to an alternate solution to de-implementation that can "allow physicians to be fully present with their patients", namely, my Aug. 9, 2016 post "More on uncoupling clinicians from EHR clerical oppression" at http://hcrenewal.blogspot.com/2016/08/more-on-uncoupling-clinicians-from-ehr_91.html

 

-- SS

Still More Electronic Medical Data Chaos, Pandemonium, Bedlam, Tumult and Maelstrom: But Don't Worry, Your Data is Secure

Case 1. Tumult

October 5, 2011
New York Times
Patient Data Landed Online After a Series of Missteps

By KEVIN SACK

Private medical data for nearly 20,000 emergency room patients at California’s prestigious Stanford Hospital were exposed to public view for nearly a year because a billing contractor’s marketing agent sent the electronic spreadsheet to a job prospect as part of a skills test, the hospital and contractors confirmed this week. The applicant then sought help by unwittingly posting the confidential data on a tutoring Web site. [Got all that? - ed.]

In an e-mail sent to a victim of the breach, the billing contractor, Joe Anthony Reyna, president of Multi-Specialty Collection Services in Los Angeles, explained that his marketing vendor, Frank Corcino, had received the data directly from Stanford Hospital, converted it to a new spreadsheet and then forwarded it to a woman he was considering for a short-term job.

The position was with Mr. Corcino’s one-man shop, Corcino & Associates, Mr. Reyna wrote in the e-mail, which was authenticated by his lawyer, Ellyn L. Sternfield. The job applicant apparently was challenged to convert the spreadsheet — which included names, admission dates, diagnosis codes and billing charges — into a bar graph and charts, Stanford Hospital officials said.

Not knowing that she had been given real patient data, the applicant posted it as an attachment to a request for help on studentoffortune.com [I wrote about that earlier here - ed.], which allows students to solicit paid assistance with their work. First posted on Sept. 9, 2010, the spreadsheet remained on the site until a patient discovered it on Aug. 22 and notified Stanford.

My, how electronic data can travel when mishandled. Try that trick with 20,000 paper charts ...

The hospital, located on the campus of Stanford University in Palo Alto, demanded that the spreadsheet be removed, and the Web site quickly complied. Pressed for time, the job prospect wound up completing the assignment herself and, in the end, did not get hired, Ms. Sternfield said.

Ironically, this was all for naught.

Mr. Corcino, in his first public statement, attributed the breach to “a chain of mistakes which are far too easy to make when handling electronic data.”

Far too easy to make - especially by the dyscompetent.

... Breaches of private medical data have become distressingly commonplace, with two substantial ones disclosed in the last week alone. [We don't know the details of those yet; that's for next week - ed.]

Case 2: Pandemonium (from same NYT article)

In Orlando, officials with Florida Hospital reported that three employees had improperly combed through emergency department records of 2,252 patients, apparently to forward information about accident victims to lawyers. The employees were fired, and law enforcement officials are investigating.

Trolling for Torts - is this a new EMR TV game contestant show? Perhaps it could be followed by "Trolling for Tarts?"


Case 3: Bedlam (from the same NYT article)

Meanwhile, Science Applications International Corporation disclosed that computer backup tapes containing medical data for 4.9 million military patients [that number also amounts to almost 2% of the total U.S. population - ed.] had been stolen from an employee’s car in San Antonio. The data included Social Security numbers, clinical notes, laboratory test results and prescriptions. The company said the risk of harm was low because retrieving data from the tapes would require specialized knowledge, software and hardware. [Who's to say the theft was not by someone with that specialization, or someone paid by same to steal the tapes? - ed.]

The Texas breach is by far the largest since September 2009, when a new federal law began requiring disclosures of medical privacy violations involving at least 500 people. Some 330 such episodes have been tallied, including four others that affected more than one million people each.

We'd all be buried in stray clinical paper by now if it weren't for computers. Thank god for them!

Officials at the Department of Health and Human Services said the new reporting requirements had exposed deep vulnerabilities and encouraged renewed vigilance.

Exposed to whom? The blind, deaf and dumb?

“We’re moving in the right direction in terms of a culture of compliance,” said Leon Rodriguez, director of the department’s Office for Civil Rights, which investigates medical privacy cases. “Are there still a lot of problems out there? Yeah, my sense is there are still a lot of problems.”

The Titanic was moving in the right direction - towards New York Harbor, in fact, when it met a little unexpected obstacle. Perhaps a culture of brains would be better than a culture of compliance...

The Stanford breach was notable for the duration of public exposure, and for spotlighting the vulnerability created by a medical provider’s business relationships with outside parties.

Last week, lawyers filed suit in state court in Los Angeles, seeking certification as a class action and $20 million in damages from Stanford Hospital & Clinics and Multi-Specialty Collection Services, which is known as MSCS.

$20 million might hurt a bit, and might help motivate the organization to hire better and/or more appropriate clinical information management expertise - in house where it belongs (see below).

The threat of liability set off a predictable round of finger-pointing.

In written responses to questions, Lisa Lapin, Stanford University’s assistant vice president for university communications, said, “MSCS bears the complete and sole responsibility for the breach.”

It's their fault, not ours.

Ms. Lapin said the hospital had sent the data in encrypted form to Mr. Corcino, who requested it on behalf of MSCS to analyze a strategy for improving billing collections. She said Mr. Corcino had regularly represented himself as MSCS’s executive vice president and had been Stanford’s “primary contact” during a seven-year relationship. MSCS, a five-person firm that audits hospital accounts to maximize reimbursement, possessed the passwords to unencrypt the data, she said.

It was all about money and outsourcing.

“This mishandling of private patient information was in complete contravention of the law and of the requirements of MSCS’s contract and is shockingly irresponsible,” the hospital said in a statement.

It is foolish to believe that someone else can run critical aspects of your business, and it is even more foolish to believe that it is OK for someone else to run critical aspects of your business.

Ms. Sternfield, Mr. Reyna’s lawyer, said Mr. Corcino had never been an MSCS employee, but rather was paid a monthly fee to drum up business, typically in face-to-face meetings with health care executives. Mr. Reyna, she said, had no knowledge that the Stanford data had been sent to Mr. Corcino, or that he had passed it on.

Mr. Corcino was not authorized to use an MSCS title, Ms. Sternfield said, but she declined to say whether Mr. Reyna was aware of the practice. She acknowledged that Mr. Corcino sometimes used an MSCS e-mail account.

In his e-mail to the breach victim, who shared it with The Times, Mr. Reyna wrote that Stanford had sent the file to Mr. Corcino “for a potential MSCS project that would audit paid accounts to verify that the reimbursement was correct.”

For his part, Mr. Corcino said in a statement that he was an independent contractor but was “the marketing face of the company,” and that MSCS “allowed me to use the title of executive vice president.” He wrote: “Stanford sent the file to me at MSCS, and I imported the data into a spreadsheet that was forwarded to the job applicant as part of a skills test. I did not intend to provide any personal health information in the file. This was a marketing project.”

Without explaining how or why he sent the data to the applicant, Mr. Corcino said MSCS had not trained him properly and faulted Stanford for sending him private information that he did not need. That, he said, was the “first link in a chain of mistakes.”

“I regret that Stanford released a file containing unnecessary information,” Mr. Corcino said, “that MSCS did not have an appropriate training and audit system for the handling of electronic data and that I was not more careful with the file. While Stanford and MSCS left the information in the file I received, it was my mistake to not catch its inclusion and remove the data.” ... The hospital has terminated its relationship with MSCS, and Mr. Reyna has done the same with Mr. Corcino.

Even I can't follow all that. This will be one convoluted court case...

Stanford Hospital has reassured affected patients that the posted spreadsheet did not contain Social Security numbers, birthdates or credit card numbers, and has offered free identity theft protection services. The hospital said it had not uncovered any misuse of the exposed data.

Yet, that is. (Is it no wonder that sedatives are among the most highly-prescribed medications?)

Moving from the NYT article:

Case 4: Tumult (I'm running out of descriptors)

A large class action lawsuit again Health Net and IBM:

California Legal
Westlaw Journal Insurance Coverage

Health Net’s, IBM’s negligence compromised medical data, suit says

June 7 (Westlaw Journals) - Health Net Inc. and IBM face a class-action lawsuit seeking $5 million in damages over the loss of computer storage devices that held the medical histories, financial data and Social Security numbers of 2 million people.

Health Net Policyholder Alana Bournas’ class-action complaint in the U.S. District Court for the Eastern District of California alleges that the insurer and IBM breached their duty of confidentiality and negligently allowed the release of highly personal and confidential information of millions of Health Net employees and policyholders.

The complaint alleges violation of California’s Confidentiality of Medical Information Act, Cal. Civ. Code § 56; Cal. Civ. Code § 1798.2, which concerns the unauthorized disclosure of customer records; Cal. Bus. & Prof. Code § 17200, the state’s unfair-competition law; and public disclosure of private facts.

Companies will either pay the going price for competent employees, or pay for the mistakes of incompetent ones. It would probably be better for society, however, to do the former habitually.

The suit says IBM agreed to manage Health Net’s information technology database for five years beginning in 2008.

IBM informed Health Net Jan. 21 that it had lost nine disk drives containing the confidential information of 2 million people, including Health Net policyholders and employees.

Health Net failed to alert the victims of the breach until March 14, the complaint says.

IBM allegedly also failed to encrypt the data, thereby enabling anyone who possesses the hard drives to easily access the confidential information. This puts the victims at an increased risk of identity theft and “other unauthorized uses of plaintiff and class members’ personal information” the suit says.

Encryption, a feature now built into mainstream OS's by Microsoft and Apple? (Oh wait...IBM...)

Health Net’s attempt to compensate the victims by providing two years of free credit monitoring services through TransUnion is an inadequate remedy for the defendant’s conduct, Bournas says. This “remedy” fails to address unauthorized disclosures of medical information, and the monitoring services only protect against new account fraud but do not address fraudulent activity with existing accounts, the suit says.

These executives apparently can't even get the fix straight.

Moreover, the complaint says, Health Net has previously been accused of a similar breach of confidential information. In 2009 it lost the same types of records of nearly 1.5 million people and waited six months before notifying the victims. In settling the state of Connecticut’s lawsuit stemming from that security breach, the company promised “to enhance security procedures and training,” the suit says.

What can I say?

The current breach could have been avoided had Health Net and IBM taken proper precautions and implemented security policies to maintain consumers’ confidential data, according to Bournas. Therefore, the protections granted under California law require that Health Net be penalized for its negligence, she says.

The plaintiff notes that millions of people entrusted Health Net with their private data.

“At best, defendants’ actions allowed this private information to go astray. At worst, the private information is being viewed, sold, resold, and used for illegitimate and illegal purposes,” the complaint says.

The suit is seeking injunctive relief, compensatory damages, declaratory relief, and attorney fees and costs.

Bournas v. Health Net Inc., No. 2_11-CV-01262, complaint filed (E.D. Cal. May 11, 2011).

I would revise that to say "The current breach could have been avoided had Health Net and IBM hired personnel in adequate numbers with the qualifications and true gravitas (and not laid them off, of course) to maintain consumers’ confidential data."

Case 5: Maelstrom (I am reaching to the bottom of the barrel for such descriptors).

Wellpoint recently settled class-action suit in CA.

AMA news
By Pamela Lewis Dolan, amednews staff.
Posted Aug. 1, 2011.

WellPoint reaches tentative accord in data breach suit

It is the second settlement to come from lawsuits claiming that the company failed to protect the privacy of individual insurance applicants online.

WellPoint has reached a preliminary settlement that will, if approved, bring an end to a class-action lawsuit filed more than a year ago.

The lawsuit, filed in the Superior Court of the State of California, involves the potential exposure of data belonging to more than 600,000 individual health insurance applicants on a company-run website that allowed insurance applicants to track their applications.

The situation came to light when an applicant to WellPoint-owned Anthem Blue Cross of California sued the company in March 2010. The applicant was able to manipulate the web address within the site to gain access to other applicants' information, including names, addresses, dates of birth, Social Security numbers and health and financial information.

In other words, probably changing a simple number in the URL brought up someone else's records. Good going there, Wellpoint. What were the programmers thinking? (Were they thinking?)

When the suit was filed, the company said an upgrade to the system caused the information to become exposed. The company said a third-party vendor validated that all security measures were in place when, in fact, they were not. Changes were made to the system soon after the situation was discovered.

Blame someone else, yet again.

In addition to the class-action suit, the company was sued by Indiana Attorney General Greg Zoeller in July 2010. The suit, filed in Marion County Civil Superior Court, alleged that the company violated the Indiana Disclosure of Security Breach Act by failing to notify Zoeller, and the 32,051 Indiana residents affected by the incident, in a timely manner. That suit was settled in early July, when WellPoint agreed to pay a $100,000 fine. As part of the settlement, WellPoint admitted it had a security breach and failed to properly notify the attorney general's office as required by law.

Gevalt.

Under the preliminary settlement in the California class-action matter, WellPoint agreed to offer credit monitoring for two years to all affected individuals. Class members are eligible to receive reimbursement for identity theft losses of up to $50,000 per incident, as well as additional time to file identity theft claims until May 31, 2016. Those making identity theft claims are eligible for an additional five years of credit monitoring. The company also will donate a total of $250,000 to two nonprofit organizations whose efforts are directed at protecting consumers' privacy on the Internet.

It might have been cheaper and better for goodwill not to outsource a vital function...those third-party vendors can really hurt you. (I'd really like to know - was this "third party vendor" domestic, or overseas?)

WellPoint did not admit wrongdoing in the case, nor was it found guilty. A fairness hearing is scheduled for November, and the courts then will decide whether to approve the settlement.

Large corporations are immune from such formalities as admitting wrongdoing or being found guilty.

-----------------------

But don't worry. Your medical data's safe.

Sort of. See also:

• "Networked EMR's and Healthcare Information Security: Practical When Massive IT Security Breaches Continue?",

• "Networked, Interoperable, Secure National Medical Records a Castle in the Sky?",

• "Operation Aurora And a Widespread Reluctance to Discuss IT Flaws: Is Universal Healthcare IT Really a Good Idea in 2010?",

• "Medical data breach of the week - but your EMR data is secure, trust us, we're IT experts",

• "Insurers Test Data Profiles to Identify Risky Clients",

• and others

-- SS

Quis Custodiet Ipsos Custodes? Redux

Revised HHS Rules for Conflict of Interest Fall Short

This morning NIH Director Dr. Francis Collins announced revisions to the existing 1995 regulations on objectivity in research that is funded by the Public Health Service. The focus is on significant financial interests (SFI) and on financial conflicts of interest (FCOI). The regulations illustrate the 3-way dance involving academic institutions (the grantees), NIH (the grantor) and academic scientists (the investigators). Thanks to Senator Grassley (R-Iowa) and his investigator Paul Thacker, headlined revelations in recent years about unacceptable management of FCOI at places like Stanford (Alan Schatzberg), Emory (Charles Nemeroff) and Harvard (Joseph Biederman) forced these revisions of the NIH regulations.

The general initial reaction to the new rules has been critical – here and here, for instance. Many stakeholders had urged the NIH to require that institutions make the disclosed FCOI of their investigators available on a public website. Dr. Collins had intimated that we could expect to see this change, so there is consternation that it somehow became derailed by institutional lobbying in recent months. The stated concern was that institutions would feel burdened by the need to maintain these data bases. Instead, if citizens wish to inquire about FCOI involving PHS-derived research funding, they will need to write to the institution, which is obliged to respond within 5 days. That’s not exactly user friendly. POGO today made the smart suggestion that the data could easily be attached to information about awarded funds on the NIH RePORTER website, that already exists.

A second failing is that the revised regulations do not close the regulatory loophole through which Charles Nemeroff strolled when he moved from Emory to the University of Miami. We covered that incident several times on this blog last year. Though Nemeroff was under a 2-year sanction and banned from participating in NIH-funded research at Emory, his friend Thomas Insel, Director of NIMH, assured the dean of the medical school at Miami that Nemeroff was in good standing to apply for NIH funding when he moved from Emory. To underline the point, Insel displayed the bad judgment of appointing Nemeroff to 2 new NIMH review committees.

Do today’s revised regulations prevent a repeat of this administrative travesty? No, they don’t. There is some mention of ensuring oversight if a sanctioned investigator wishes to transfer a grant to a new institution, but nothing to prevent the Nemeroff-Insel dance from being repeated. Here is the relevant section of today’s announcement (page 89):

We did, however, agree with one respondent that it would be helpful to clarify, in the grants context in particular, that institutional sanctions against an Investigator can travel with the Investigator upon his or her transfer to another Institution. Specifically, we have revised 42 CFR 50.606, paragraph (a), as follows: “If the failure of an Investigator to comply with an Institution’s financial conflicts of interest policy or a financial conflict of interest management plan appears to have biased the design, conduct, or reporting of the PHS-funded research, the Institution shall promptly notify the PHS Awarding Component of the corrective action taken or to be taken. The PHS Awarding Component will consider the situation and, as necessary, take appropriate action, or refer the matter to the Institution for further action, which may include directions to the Institution on how to maintain appropriate objectivity in the PHS-funded research project. The PHS may, for example, require Institutions employing such an Investigator to enforce any applicable corrective actions prior to a PHS award or when the transfer of a PHS grant(s) involves such an Investigator.”

This revision is intended to reference the range of options for the PHS Awarding Component to consider, depending on the specific circumstances at issue. For example, PHS may decide to initiate government-wide suspension or debarment of the Investigator under 2 CFR Part 376; or to use enforcement measures under 45 CFR 74.62, e.g., perhaps to make the approval of a transfer contingent upon the former Institution’s disclosure of the corrective action- including the specific sanctions against the Investigator- to the new Institution; and/or to use special award conditions under 45 CFR 74.14, e.g., perhaps to make the new Institution agree to take the same or similar action against that Investigator or explain to the PHS Awarding Component in writing why such action was not taken and what alternative measures will be used to ensure compliance.

What’s wrong here? Everything is optional; everything is discretionary; everything is contextual – that is a formula for NIH and the academic institutions to just look the other way. And if a Nemeroff decides just to relocate without transferring a grant then he is free to start reapplying again right away. Miami would not be required to continue applying the Emory sanction banning him for 2 years from involvement in federal grants. The PHS Awarding Component (NIMH in this case) may or may not get involved, or it may pass the buck to the new institution. So what has changed? If it is left up to compromised federal bureaucrats like Thomas Insel, and institutional administrators like Pascal Goldschmidt at Miami, then nothing has changed. It's business as usual, folks.

Dr. Collins, you have not done what you set out to do. Too bad.

IMPEACHMENT: IT’S ABOUT THE INSTITUTION, NOT THE PERSON

IMPEACHMENT: IT’S ABOUT THE INSTITUTION, NOT THE PERSON

The impeachment trial of Judge G. Thomas Porteous of Louisiana this week was a lesson in civic ethics. The lessons of the Porteous trial apply to academic medical centers, professional medical societies, medical journals, and granting agencies like NIH.

The Porteous trial is a straightforward case of bribes, kickbacks and corruption involving a Federal judge. The most enlightening arguments came from prosecutor Rep. Adam Schiff, D-California, laying out the case for impeachment in the Senate. He gave a lucid presentation of the logic and the historical origins of the impeachment process. The key points are these: impeachment serves to protect the dignity, honor, and credibility of the office more than to punish the wayward office holder; and impeachment is a constitutionally sanctioned way to clean the Augean stables without necessarily having to prove criminal liability. It is sufficient to demonstrate that the bad actors have brought disgrace on their offices.

What this means for us in medicine is that legalistic charges and defenses are not the right way to go in exposing and ejecting bad actors from our field. In the highly publicized cases of ethical compromise over the past few years, our group disapproval, when there was any at all, generally has run on two parallel tracks. The first is legalistic, and it favors the bad actors, who flaunt their constitutional protections with the taunt, prove it. The second ground of disapproval is esthetic, based on the tackiness of the bad actors’ behaviors – regardless of technical legalities, what they do is an affront and an insult to professional standards and mores. When we look at how recent incidents in medicine actually played out, however, we see a disconnect. The bad actors have narrowed the debate to the first ground of disapproval, while forcing the second off limits. In this strategy, they have received conscious or unconscious assistance from the professional establishment. The focus has been on legal technicalities involving the bad actors rather on preserving the dignity and credibility of high offices in academic medicine.

For instance, when Charles Nemeroff was exposed by Senator Grassley for conflict of interest in his NIH grants, he came up with the contrived legalistic defense that his unreported payments from GlaxoSmithKline were for ‘CME-like’ presentations, and thus somehow exempt from disclosure. Nemeroff’s obfuscations finally collapsed of their own weight and Emory University took decisive action against him, even though they had sufficient evidence dating back at least 4-5 years. In the end, Emory had to go through the wringer to discipline Nemeroff, and the institution suffered grave damage to its reputation for a number of years as the price of delay.

For instance, when Thomas Insel, the Director of NIMH, assured Pascal Goldschmidt, Dean of the School of Medicine at the University of Miami, that Nemeroff was absolutely in good standing for applying for new NIH grants if he left Emory for Miami, despite a 2-year ban at Emory, he hewed to the letter of the law while disregarding its spirit in order to help his friend. Moreover, when Insel appointed Nemeroff to two new NIH Research Review Committees, he established beyond any doubt that he was intent on trying to help Nemeroff get back into circulation, and that he failed to grasp the gravity of the dishonor that Nemeroff inflicted on the field. This obtuseness on Insel’s part damaged the credibility and reputation of NIMH. To his credit, NIH director Francis Collins finally ‘got it’ and forced a review of the NIH ethics rules that had been entrusted to Insel.

For instance, when Pascal Goldschmidt, Dean of the School of Medicine at the University of Miami, claimed he had done due diligence in his recruitment of Nemeroff as chair of his psychiatry department in 2009, he focused on the legalistic aspects of Emory’s review of Nemeroff, while failing to understand the degree of negative publicity associated with Nemeroff’s name. He ended up hiring someone who is an object of ridicule, and he in turn is ridiculed by association.

For instance, when Stanford University learned of Alan Schatzberg’s boundary violations vis a vis his NIH-funded projects and his personal corporation, they first pushed back on legalistic technical grounds. Only later did the Stanford administration get the message by removing Schatzberg from his Principal Investigator role with NIH grants, and eventually appointing a new chair of psychiatry. Meanwhile, the public image of Stanford suffered.

For instance, when the American Psychiatric Association was warned that Alan Schatzberg was a problematic candidate for election as President of the association on account of his history of ethical compromise, they went ahead anyway and they have since had opportunity to regret that decision. Here again, the professional society appears to have lost sight of the ethical forest for the legal trees. The credibility and reputation of the APA have suffered because of the taint associated with Schatzberg’s presidency.

For instance, when the New York Times recently exposed the ghostwriting associated with the 1999 textbook of Charles Nemeroff and Alan Schatzberg, the so-called authors responded with typical legalistic defenses. They and the University of Miami and the American Psychiatric Association Press (the publisher) again lost sight of the ethical forest for the legal trees. This stereotyped, public relations driven response ignores the visceral and esthetic distaste most observers felt on learning about the collusion between the ‘authors,’ the professional writing company and the sponsoring pharmaceutical corporation. Even the defense that it occurred a long time ago fails. In the Porteous trial, the prosecution established that dishonorable events in an officer’s past are grounds for impeachment, whether or not they also occurred during the person’s time in office.

For instance, when Harvard Medical School planned a new CME program on psychopharmacology in mid-2011, they engaged a number of compromised academic speakers, including Nemeroff and Schatzberg. What the hell was Harvard thinking? I told the Course Director, Carl Salzman, that this amounts to pandering. He replied defensively that Nemeroff and Schatzberg are well regarded speakers and that he would ensure that they gave unbiased presentations. That’s not the point. The point is that they have done serious damage to our field, and for Harvard Medical School to give them top billing amounts to denial of the elephant in the living room. It’s collusion in service of their public rehabilitation. I told Dr. Salzman that his logic amounts to compartmentalized thinking. I might have added that Adolf Hitler gave a lot of great speeches that received rave reviews and that compartmentalized thinking was widespread in the nation of Germany between 1928 and 1945. Meanwhile, Harvard Medical School gets a black eye through its association with these compromised individuals. So do the other speakers who will be on the panel. Who needs this kind of taint? Dr. Salzman can defend Nemeroff and Schatzberg all he wants on specious legalistic grounds, but who cares? Harvard Medical School could use some moral clarity.

So, we come back to the impeachment trial of Judge Porteous. Impeachment protects the institution. When sleazebags get into positions of authority and trust they need to be dumped, and our professional and academic institutions need to have enough spine to dump them. At the very least, we don’t need to tolerate institutions like Harvard Medical School pandering to compromised academic bad actors. For shame.

INSTITUTE of MEDICINE REPORT on CONFLICT of INTEREST

INSTITUTE of MEDICINE REPORT on CONFLICT of INTEREST

Today we saw a new marker laid down in the arena called Conflict of Interest (COI). The Institute of Medicine of the National Academy of Sciences issued a report of its Committee on Conflict of Interest in Medical Research, Education and Practice. The report is comprehensive, even exhaustive, running to 353 pages. Gardner Harris in the New York Times today calls it “scolding,” “stinging,” and “damning.” The recommendations go well beyond any proposed in the recent past by medical schools or by other professional organizations. The NYT quoted David Rothman, president of the Institute on Medicine as a Profession at Columbia University: “With the I.O.M.’s endorsement, issues that were once controversial now are indisputable. Conflicts of interest in medicine are no longer acceptable.”

It will take some time for the field to digest the scope of the IOM recommendations. It will take even longer for the new standards to be implemented. For now, I offer just a few observations.

First, if the IOM hopes for maximum credibility then it might ought want to do some housecleaning. A few years ago I fired a shot across the bow of the IOM concerning COI. [Can the Institute of Medicine Review the FDA? Nature Medicine 11, 369 (1 April 2005) doi:10.1038/nm0405-369] Nothing much changed, and in the following years, national scandals erupted involving several of the issues I had highlighted. Prominent IOM members, who were well known to be poster boys for COI, were exposed by Senator Charles Grassley (R-Iowa). Their embarrassing behaviors included incomplete financial disclosures and noncompliance with NIH policy on financial conflict of interest. The exposés included Emory’s Charles Nemeroff and Stanford’s Alan Schatzberg. In both cases, administrative rearrangements have now been implemented. The case of Dr. Nemeroff has been referred by Senator Grassley to the Inspector General of the Department of Health and Human Services. It is perhaps no accident that Dean Claudia Adkison of Emory and Dean Philip Pizzo of Stanford were included as external reviewers of the draft IOM report. Their insights would have been invaluable.

Another ongoing embarrassment for the IOM is Lester Crawford. He was the FDA Commissioner who resigned abruptly in 2005 and later pleaded guilty to criminal conflict of interest. He had been charged with falsely reporting information about his stock holdings in companies he was in charge of regulating. He received a sentence of three years of supervised probation and a fine of about $90,000. He is now senior counsel with a health care lobbying firm in Washington, DC. The Institute of Medicine does not help its image by continuing the membership of such a compromised individual.

As the Emory-Nemeroff and Stanford-Schatzberg cases unfolded it appeared that the respective institutions had themselves contributed to the problems, either through inaction or through studiously nontransparent procedures on disclosure. Stanford, for instance, apparently did not require faculty members to report the proceeds of stock sales, and when challenged the university invoked on-line financial reporting services and SEC filings as a sufficient substitute. Not surprisingly, because Stanford didn’t know about Dr. Schatzberg’s realized gain of some $109,000 from sale of founder’s stock in his biotech start-up company, Corcept Therapeutics, this information was not reported to NIH.

Recommendation 4.1 One of the IOM’s recommendations applies particularly to the Stanford-Schatzberg case. Recommendation 4.1 addresses the boundary between academia and commerce in the case of research involving human subjects. Here is the specific language:

“Academic medical centers and other research institutions should establish a policy that individuals generally may not conduct research with human participants if they have a significant financial interest in an existing or potential product or a company that could be affected by the outcome of the research. Exceptions to the policy should be made public and should be permitted only if the conflict of interest committee (a) determines that an individual’s participation is essential for the conduct of the research and (b) establishes an effective mechanism for managing the conflict and protecting the integrity of the research…” (page S-14).

Last year I posted several times about this issue in the Stanford-Schatzberg case. It is gratifying now to see the IOM affirm the importance of the boundary. The activities declared off-limits by the IOM include not only “recruiting subjects; obtaining informed consent; assessing the clinical end points;” but also “analyzing data; or writing the results, conclusions, and abstracts for publications reporting the findings of the study.” (page 4-17). In Stanford’s earlier plan for managing the conflict and protecting the integrity of the research, Dr. Schatzberg was free to engage in the latter group of activities. Indeed, his hands were all over the project when it came to responding to scientific critiques, managing the climate of professional opinion, attacking and threatening critics, promoting his company’s interest through review articles and press releases, slipping unpublished and non-peer-reviewed commercial data into academic reviews, and generally conducting commercially slanted public relations through academic outlets.

When Stanford adopts the IOM recommendations, such activities will be blocked. As I stated last year, “Review articles that assess a field and synthesize data form a crucial part of science that has to be off-limits to Dr. Schatzberg just as much as assessing patients in one of his clinical trials would be.”

We should congratulate the IOM committee members for their work, and we hope to see the field embrace their recommendations.

Bernard Carroll.

UPDATE 04-30-2009: The link provided earlier for the IOM report document is no longer operative. Here is where to go now for a copy of the report. This time it will cost you.

http://www.nap.edu/catalog.php?record_id=12598

FOLLOW the MONEY, Part II

FOLLOW the MONEY, Part II

Recently we looked at some financial aspects of the boundary between Stanford University and Corcept Therapeutics. Dr. Alan Schatzberg, the chair of Stanford’s psychiatry department, received at least $510,000 from Corcept between 2000 and 2007. Senator Grassley asked why NIH received no disclosure from Stanford of Dr. Schatzberg’s realized gain from selling Corcept stock while he was Principal Investigator on a related NIH grant. The Senator also remarked on Stanford’s lowball estimate to him of Dr. Schatzberg’s equity in Corcept, currently between $5 million and $6 million.

Dr. Schatzberg is not the only academic to benefit from Corcept. Dr. Charles Nemeroff, a member of Corcept’s scientific advisory board, also did well. He exercised options to buy 60,000 shares on joining the board in 1998. Dr. Nemeroff diligently promoted Corcept’s drug. Following the style documented for Dr. Schatzberg, Dr. Nemeroff emphasized weak positive trends in the data while suppressing inconvenient negative analyses. In the fall of 2002, Dr. Nemeroff referred to the Stanford-NIH trials as “impressive studies indicating that ... (mifepristone)...is very effective in the treatment of psychotic depression.” The claims “impressive” and “very effective” are indefensible, and may even be fraudulent. Dr. Nemeroff’s exaggerated promotion occurred while the company prepared for its IPO, but he did not disclose his financial stake. Right after the 6-month SEC-mandated lockup period expired, Dr. Nemeroff sold 20,000 shares for $137,500. His cost was $6.60. Help me, what is the right term for this behavior?

A second member of the team who did well is Dr. Joseph Belanoff, Corcept’s co-founder and CEO. Like Dr. Schatzberg, he received around 3 million shares in 1998. Dr. Belanoff began selling as soon as the lock-up period ended. Between November 2004 and November 2006, Dr. Belanoff sold approximately 10,000 Corcept shares each month, realizing over $1 million. His cost for all those shares was around $80. An on-line financial service listed 6 additional quarterly sales, each of 30,000 shares, which netted over $900,000. Dr. Belanoff also received an ample corporate salary. His documented salary increased from $310,500 plus a 10% bonus in 2003 to $1,643,760 in salary ($411,008), bonus ($102,752), and stock options ($1,130,000) in 2007. Not bad, for someone with modest academic credentials.

Stanford University itself has a financial stake. Following a licensing fee of $47,000 that was paid to Stanford in 1999 along with 30,000 shares of stock, Corcept has been obligated to make non-refundable royalty payments of $50,000 a year. That adds up to $497,000 through 2008. Additional payments up to $250,000 are due to Stanford when certain drug development milestones are reached. Stanford has stated that it long ago divested itself of the Corcept stock. However, an on-line information service lists Stanford as a major shareholder as recently as 31 March 2008, with over 47,000 shares in the name of the Board of Trustees. In a second agreement, Stanford receives a $20,000 licensing fee, 1000 shares of Corcept stock, $10,000 a year in non-refundable royalties, and potential milestone payments of $350,000. All of this is in advance of any marketing of products by Corcept. So, Stanford is not exactly a disinterested administrator of the academic-corporate boundary between Dr. Schatzberg, NIH, and Corcept.

We should also note some unusual events involving Corcept stock movements. On 15 August 2005 Corcept stock received a research broker upgrade. Heavy selling followed the upgrade (volume was 613,000 shares, 31 standard deviations above the mean for the previous 10 trading days). For non-statistician readers, 3 standard deviations would tell us that the spike is almost certainly not consistent with the historical fluctuations in volume. So, a spike of 31 standard deviations means any such probability is astronomically small. The stock price moved up 34% from the previous day but quickly sank again. That same day, Dr. Schatzberg sold 15,597 shares for $109,179, at an intra-day high of $7 per share. The cost basis of those shares to him was $5.15.

On Friday 23 September 2005, heavy selling of Corcept stock occurred (871,700 shares). This volume was 35 standard deviations above the mean of the previous 10 trading days. On the following Monday, Corcept announced that a widely publicized study of mifepristone for Alzheimer disease was being halted prematurely for lack of progress. The company also announced slower than expected enrollment in a Phase III study of psychotic depression, for which they projected delayed announcement of results. Over the next month the stock price declined 16%.

These episodes of concentrated stock movement represent coincidences that remain to be explained. Was the August 2005 upgrade and selling spike in which Dr. Schatzberg participated a case of “pump and dump”? Was the September 2005 selling spike ahead of bad news a case of insider trading? Who did all that selling, and how did they know?

The questions just keep coming.

STANFORD, SCHATZBERG and CORCEPT THERAPEUTICS: RECOGNIZING and MANAGING CONFLICTS

STANFORD, SCHATZBERG and CORCEPT THERAPEUTICS: RECOGNIZING and MANAGING CONFLICTS

The case of Stanford University and Dr. Alan Schatzberg, chairman of Stanford’s department of psychiatry, has been in the news for a week. Senator Grassley raised concerns about conflicts of interest, reporting of same, and Stanford’s policies. In play are a company called Corcept Therapeutics that Dr. Schatzberg founded, and a drug called Mifepristone or RU 486 that is in clinical trials for a severe form of depression. Interest in this case is especially high because Dr. Schatzberg is the president-elect of the American Psychiatric Association. Daniel Carlat, Clin Psych, and University Diaries have had cogent commentaries on the wider implications of this breaking issue.

The University issued a statement in response to Sen. Grassley. This statement asserted that Dr. Schatzberg has fully complied with the University’s rigorous conflict of interest policy and that Dr. Schatzberg “has not been involved in managing or conducting any human subjects research involving Mifepristone, a pharmaceutical that Corcept licenses for the treatment of psychotic major depression.”

Stanford’s account of Dr. Schatzberg’s arm’s-length role in Stanford’s NIH-supported studies of RU 486 (mifepristone) for depression is questionable, if not disingenuous. Dr. Schatzberg’s patent application filing for use of RU 486 in depression occurred in 1997, and he founded the corporation Corcept Therapeutics in 1998. He was a member of the board of directors from 1998 to 2007. He has chaired the corporation’s scientific advisory board since 1998.

There is reason to believe that Dr. Schatzberg had a key role in Stanford’s clinical trials of Corcept’s drug reported in 2001, 2002, and 2006. He was a co-author on all three publications, and there was no disclaimer about his role until 2006. This disclaimer is hardly credible. As Principal Investigator on the NIH grants, Dr. Schatzberg was expected to supervise the junior faculty and research staff at Stanford who recruited, assessed, and treated patients in the studies of RU 486. He was responsible for the choice of outcome measures, about which questions have been raised. He was responsible for the quality of the reported data analyses, which were, frankly, inexpert, when they were provided at all. Above all, he was responsible for the tone of the NIH-supported Stanford publications that claimed Corcept’s drug is effective.

If there were any doubt that Dr. Schatzberg’s hands were all over these Stanford studies, one only has to see the record of his leading role in responding to scientific critiques of their design, execution, analysis, and interpretation. He was clearly the manager.

Moreover, the record is clear that Corcept relied on the NIH-supported Stanford publications for positive claims to enable the corporation to raise capital (well over $100 million by now, with nothing to show for it). Corcept’s own Phase III clinical trials have been uniformly negative. For this strategy to succeed, the Stanford trials had to be portrayed as positive. As Paul Jacobs detailed in the San Jose Mercury News in 2006, using independent statistical experts, Dr. Schatzberg and his Stanford/Corcept colleagues made seriously exaggerated claims for the drug’s efficacy in their 2001 and 2002 publications. These exaggerated claims have been assiduously repeated by Dr. Schatzberg, by Stanford faculty members answerable to him, and by academic members of Corcept’s scientific advisory board in many scientific journals and textbooks. All these testimonials are compromised. The effect of these repeated, unjustified, claims is to raise the profile of the corporation and of the drug. It amounts to public relations and branding through academic outlets. Roy Poses on this site has dissected the scientific credibility of claims for the utility of RU 486 in depression.

Far from being removed from the scientific debate about Corcept’s drug, Dr. Schatzberg has had the leading role in “selling” the story to the scientific community, in “defending the brand” against scientific criticisms, and in providing his corporation a plausible story line to attract new capital. It was Dr. Schatzberg who talked about how the drug “may be the equivalent of shock treatments in a pill” in a 2002 Stanford press release. There is no clear boundary between Dr. Schatzberg’s NIH-supported academic roles and his service to the corporation he founded. As for not being involved in the management of the Stanford projects, Dr. Schatzberg acknowledged to Paul Jacobs of the San Jose Mercury News “that he has considerable influence over the junior faculty members doing the studies. As chairman of psychiatry, he helps set their salaries and can affect their career advancement. And he continues as a co-author of the resulting papers.”

I have already commented on Dr. Schatzberg’s efforts to sell large parcels of Corcept stock during the company’s IPO attempts. Had these efforts been successful, Dr. Schatzberg would have benefited by $7-11 million, while still retaining over 2 million shares of Corcept stock. This aspect of the issue troubles many people. In our capitalist system, considered so necessary for developing innovative drugs, nobody complains when an entrepreneur makes a fortune inventing a useful product. Dr. Schatzberg’s apparent intent, however, was to reach for the reward before contributing any product of redeeming social value. The prospects of RU 486 succeeding as a useful treatment of psychotic depression are close to zero. People view such behavior as gaming the system. Moreover, under Stanford’s existing rules, these projected stock sales might never have been reported.

Are these significant conflicts of interest? Yes. Have they “influence(d) the conduct of medical research” at Stanford (quoting now from Stanford’s June 24 statement)? Yes. Dr. Schatzberg’s NIH grants dovetail with the efforts of his corporation, and the corporation used data from the NIH-grant-supported projects for commercial promotion. Had the corporation not existed, these particular grants likely would not have been initiated or would have had different scientific emphases. Has Dr. Schatzberg’s research “been compromised by his financial stake”? Yes. His academic publications on depression and RU 486 are compromised by exaggerated and self-serving claims for his corporation’s drug. Senator Grassley is right: it is time for Stanford to get real about corporate-academic boundaries.