Coursework No. 5
You are part of a group practice that has decided to
implement an electronic solution for clinical documentation. However, you have
come across many horror stories regarding health information security that have
led to failed clinical information system implementations. How would you
prevent this from happening to your group practice?
Create an article listing down questions that your group
practice should be able to answer to identify risks to securing electronic
health information. Post this in your blog and post the links to that article
at the UP MSHI facebook group as well as here in uvle.
Identified
Risk
|
|
Security and Confidentiality
Policy Principles
|
Are there existing policies in
the organization for security and confidentiality of health information?
|
Organizational Policies and
Procedures
|
What are the standard operating
procedure of the organization in gathering, storing and using health
information?
|
Storage of confidential data
|
How do the organization plan in
storing the confidential data?
|
Use of Data
|
How do the organization plan in
using the data? In psuedo anonymized form or individual patient information?
|
Dissemanation of Information
|
Is there a written policy on
which data elements can only be dissemenated?
|
Disposal of Information
|
For old records are to be
disposed, what is the standard operating procedure on destroying the
information?
|
Bibliography
Hutton, T.
(2012). Protecting the Confidentiality and Security of Patient Information. Asia
eHealth Information Network (pp. 55-58). Bangkok, Thailand: WHO.