Security of Health Care Records
The objective of this study is to review the learning resources dealing with the security of digital health care information and to reflect on the organization and think about how health information is stored electronically and protected. This work will consider the responsibility of the nurse to ensure the protection of patient information and identify the strategies that can be used and will further reflect on ethical issues that are likely to arise with the increased access to newer, smaller and more powerful technology tools. This work finally, will consider strategies that can be implemented to ensure that the use of HIT contributes to an overall culture of safety.
Digital Health Record - Risks
The work of Kopala and Mitchell (2011) reports that there has been a great increase in the use of digital health records. While there are a great many benefits to the use of digital health records, there are also concerns that have been raised about the risks and barriers to the use of digital health records. Various risks have been linked to the use of EMRs/EHRs and the primary risks identified are those related to the privacy of patient and security breaches of data. Other risks are cost-related, system implementation related, risks related to inaccuracies of data and liability issues. (Kopala and Mitchell, 2011, paraphrased)
II. Patient Confidentiality
The digital health records of a patient should be released only to whomever the patient gives permission to view their health records "or as allowed by law." (Harman, Flite, and Bond, 2012) This does not mean that physicians cannot access patient information as information may be released for treating, receipt of payment or for administrative purposes without the express permission or authorization of a patient. In addition, the patient has rights by federal and state law to "view, obtain a copy of, and amend information in his or her health record." (Harman, Flite, and Bond, 2012) the key to the preservation of confidentiality is "making sure that only authorized individuals have access to that information. The process of controlling access -- limiting who can see what -- begins with authorizing users." (Harman, Flite, and Bond, 2012) Employers are held accountable under the HIPAA Privacy and Security Rules for their employee's actions. The federal agency that holds responsibility for the development of information security guidelines is the National Institute of Standards and Technology (NIST). NIST further defines information security as "the preservation of data confidentiality, integrity, availability" stated to be commonly referred to as "the CIA triad." (Harman, Flite, and Bond, 2012)
III. Risk Reduction Strategies
You’re 78% through this paper. Sign up to read the full paper.
Sign Up Now — Instant Access Already a member? Log inAlways verify citation format against your institution’s current style guide requirements.