Question

DISCUSSION QUESTIONS tals usually have a policy and related procedure forwhat is the role of the responding when patients request a copy of their records. Select a procedure from your current place of employmenta risk assessment? In your discussion, consider who has or a local hospital. Compare and contrast the selected procea dure with the principles of fair information practice (FIPs). ment specialist in working with the security officer to complete access to the information required to complete the assess and how the information should be collected. Providing access to healthcare providers and securing a system from inappropriate access can be a difficult balan cing act. In many cases, the more secure a system is, the more restricted access to that system becomes. Discuss sit uations where this balancing act has created conflict or . The European Union created privacy agreements across their 28 members. What are the challenges and resources for creating an agreement to share health data across the borders of countries near you (e.g., Canada and the United States or Mexico and the United States)? . The following websites include toolkits for completing a might create conflict within the clinical area and how that -a. www.himss.org/ASP/topics_pstoolkits Directory asp? Increasingly patients are creating and maintaining per ด b. https://healthitahrq.gov/health-it-tools.and. risk assessment: conflict was (or could be) managed. faid 569&tid-4 sonal health records (PHRs) with data from a variety of healthcare providers, as well as data they have generated about their health. What provisions should be included in a model privacy and security policy that patients might use in making decisions related to their privacy and the security of their PHRs? resources/health-information-security-and-privacy collaboration-toolkit Review the risk assessment guides available at these sites and then answer the following question: Since HIPAA requires that a covered entity appoint a security officer,

Answer 1

4) Access to health care providers Vs Inappropriate access

Modern day computerized technologies such as data base, inter net working system, search are helping the health care facilities to improve their efficiency in record keeping ,easier detection of fraud,abuse or waste and an overall quality of provided health care. however these technologies also expanded the chance of misuse of patient related data. Inappropriate, illegal unauthorized access to personal information is increased currently. Recent issues in the health care domain include the inappropriate viewing the details of celebrities, a government official etc. This breaches will damage the reputations of the responsible institution also.

Providing access to health care providers and securing a system from inappropriate access can be difficult balancing act.

Many hospitals enforce security on their electronic health records(EHR) through a corrective mechanism that a security expert will review each inappropriate access. It is an inefficient process as the damage may have been occurred.

A novel approach to prevent inappropriate access is Collaborative Filtering Approach. 'Finger print' based on historical access patterns is using in this approach.

Organizations have to establish policies related to client's privacy that will emphasize the employees and other users to value the privacy of patients.

'E- mail notification of access' is one feature of an audit trail system, to prevent inappropriate access, that records details about information access