Healthcare Data Privacy and Security Is a Top Priority.
If you’re anything
like the healthcare C-level leaders we’ve spoken with recently, chances are
good that, in light of recent data breaches and landmark rulings you’re taking
a closer look at your organization’s data security and protection measures. It’s no secret that
healthcare organizations generate and capture information at a dizzying pace.
As the amount of healthcare data skyrockets, so do data privacy and security
risks. Not only can privacy and security breaches damage your organization’s
reputation and compromise patient relationships, but they can also result in
Increased risk has brought with it increased
regulation. The recent Ontario Court of
Appeals Decision involving Peterborough Regional Hospital (Hopkins vs. Kay) confirms that the Personal Health Information
Privacy Act (PHIPA) does not preclude common law claims for invasion of privacy
in the healthcare industry.
As health information regulations and
penalties stiffen and personal health information breaches continue to make
headlines across Canada, more and more healthcare providers are making data privacy
and security a priority.
What can you do to improve the specific
privacy and security needs of your patients, staff and your organization? Some
steps you can take include:
- Lock down all workstations and
associated equipment, including printers and multifunction devices,
against unauthorized access to patient health information (PHI)
- Keep encryption and decryption
capabilities for transmission and storage of PHI up to date
- Confirm that all contractors and
subcontractors complete Data Access Agreements
- Conduct thorough and comprehensive
annual risk assessments, including actual hacking attempts based on
real-life scenarios, of data management systems and processes
- Certify that all employees, from the
CEO through the janitorial staff, are fully trained and regularly updated
on current regulations
- Securely dispose of old equipment
and data stored on hard drives
To find out more about how we can help protect your organization or to contact us directly, click here.