Healthcare Data Privacy and Security Is a Top Priority.

If you’re anything
like the healthcare C-level leaders we’ve spoken with recently, chances are
good that, in light of recent data breaches and landmark rulings you’re taking
a closer look at your organization’s data security and protection measures. 
It’s no secret that
healthcare organizations generate and capture information at a dizzying pace.
As the amount of healthcare data skyrockets, so do data privacy and security
risks. Not only can privacy and security breaches damage your organization’s
reputation and compromise patient relationships, but they can also result in
major costs. 

Increased risk has brought with it increased
regulation.  The recent Ontario Court of
Appeals Decision involving Peterborough Regional Hospital (Hopkins vs. Kay) confirms that the Personal Health Information
Privacy Act (PHIPA) does not preclude common law claims for invasion of privacy
in the healthcare industry.

As health information regulations and
penalties stiffen and personal health information breaches continue to make
headlines across Canada, more and more healthcare providers are making data privacy
and security a priority.   

What can you do to improve the specific
privacy and security needs of your patients, staff and your organization? Some
steps you can take include:

  1. Lock down all workstations and
    associated equipment, including printers and multifunction devices,
    against unauthorized access to patient health information (PHI)
  2. Keep encryption and decryption
    capabilities for transmission and storage of PHI up to date
  3. Confirm that all contractors and
    subcontractors complete Data Access Agreements
  4. Conduct thorough and comprehensive
    annual risk assessments, including actual hacking attempts based on
    real-life scenarios, of data management systems and processes
  5. Certify that all employees, from the
    CEO through the janitorial staff, are fully trained and regularly updated
    on current regulations
  6. Securely dispose of old equipment
    and data stored on hard drives

To find out more about how we can help protect your organization or to contact us directly, click here.