vanessa halter - nehta - national e-health transition authority - privacy & confidentiality in...
TRANSCRIPT
![Page 1: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/1.jpg)
National E-Health Transition Authority www.nehta.gov.au1
Privacy & Confidentiality in Health:
Digital Records
eMedication Management Conference
15 March 2016
Vanessa Halter, CIPMSenior Privacy and eHealth Compliance Advisor
![Page 2: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/2.jpg)
2 National E-Health Transition Authority www.nehta.gov.au
What does ‘privacy’ mean to you?
Like Love Haha Yay Wow Sad Angry
![Page 3: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/3.jpg)
3 National E-Health Transition Authority www.nehta.gov.au
The potential for sharing health and information is a huge driver to implement eHealth.
However, increased availability does mean increased potential for privacy and
confidentiality breaches.
Previous attendees have raised …
![Page 4: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/4.jpg)
4 National E-Health Transition Authority www.nehta.gov.au
![Page 5: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/5.jpg)
5 National E-Health Transition Authority www.nehta.gov.au
![Page 6: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/6.jpg)
6 National E-Health Transition Authority www.nehta.gov.au
Business case for privacy
Ethical and professional obligations:
Accreditation/registration
Integrity of the health system:
strong privacy will promote confidence in
healthcare services
Reputational damage:
for you and your patients
Legislative obligations: Australian Privacy
Principles
![Page 7: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/7.jpg)
7 National E-Health Transition Authority www.nehta.gov.au
Privacy champion
Knows the business
Knows privacy
Builds privacy into design, policy and process
![Page 8: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/8.jpg)
8 National E-Health Transition Authority www.nehta.gov.au
Collection
Use
StorageDisclosure
Destruction
Assess -> Address -> Monitor
![Page 9: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/9.jpg)
9 National E-Health Transition Authority www.nehta.gov.au
Assess -> Address -> Monitor
• Who can access it?
• Is the information backed up/disaster recovery?
• Is it stored ‘securely’?
• Physical and technical controls
• What are the data breach/incident procedures?
![Page 10: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/10.jpg)
10 National E-Health Transition Authority www.nehta.gov.au
Staff training
Staff can be your biggest asset but potentially your biggest privacy risk…
Training should be about empowering staff to confidently and competently uphold privacy
Training as part of
induction, and ongoing ‘refresher’
Content should be relevant to
the business
Keep a record as part of
employment files
![Page 11: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/11.jpg)
11 National E-Health Transition Authority www.nehta.gov.auApollo 13, n.d. film photograph, viewed 7 March 2016<http://www.ncregister.com/images/uploads/apollo-13.jpg>
![Page 12: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/12.jpg)
12 National E-Health Transition Authority www.nehta.gov.au
Privacy take homes
• Houston
• We
• Have
• A
• Problem
![Page 13: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/13.jpg)
13 National E-Health Transition Authority www.nehta.gov.au
Privacy take homes
• H
• W
• H
• A
• P
andling privacy across entire patient journey
hy you should care: Business Case for privacy
ave a Privacy Champion
ssess > Address > Monitor your privacy risks
rivacy training
![Page 14: Vanessa Halter - nehta - National E-Health Transition Authority - Privacy & Confidentiality in Health: Digital Records](https://reader033.vdocuments.net/reader033/viewer/2022051708/58884d2b1a28ab951c8b5711/html5/thumbnails/14.jpg)
14 National E-Health Transition Authority www.nehta.gov.au
1300 901 001
Vanessa Halter, CIPMSenior Privacy and eHealth Compliance [email protected]