The following is an opinion based on our “in the trenches” experiences working with PBS-Endo.
PBS Endo is a very simple EHR. The system depends on a flat-file database, map drive and system variables to operate. Most of the documentation is dated and difficult to follow, however the concepts are still sound. PBS’s website uses a pay-wall to keep documentation and training information about their product out of the public’s reach. Updates are not free, but are included with the ‘premium’ support plan. As of 1/15/2017 PBS no longer provides remote-support access. Due to Hipaa concerns they only provide phone support. Because of this limited support access it may be necessary to contact a technician to perform updates and test backups.
Because PBS runs as a flat-file system it is easy to backup, just copy the PBSEndo folder. Restoring from this backup is very easy. Just put it on a new server and rebuild indexes. PBS will work fine, however, none of the integrations will work. For this reason the PBS Recovery gets a low score. Additional backup and recovery work must be done to protect the PHI related to the Xray imaging systems and other integrations.
PBS also scores low in security due to the patient’s ability to access the map drive from the operatory room. We have been able to to confirm that an unattended patient could copy the entire PBSendo folder onto a thumb drive and ‘recover’ it to his own server. This process bypasses the encryption because encryption is transparent to the application when run.
We have developed special safeguards to minimize the risk of a data breach from this scenario.