PHIA: Difference between revisions

From CCMDB Wiki
Jump to navigation Jump to search
mNo edit summary
Line 8: Line 8:
== Measures to ensure patient privacy in our data collection ==
== Measures to ensure patient privacy in our data collection ==
There are several security measures in place:  
There are several security measures in place:  
* a [[PDA password | strong password on the PDA]] that uses capitals, numbers and at least 7 digits
 
* a password at the HanDBase program level and encryption of all patient identifiers on the PDA, extending to the backup files on the computer used for synchronization.
* [[Pointsec]], the encryption program recommended by eHealth for laptops, runs on the laptops
* network login is required on the computer
* regular network login is required to the laptops for the first time
* emailed service desk just now to find out if we can use Pointsec to encrypt the SD card as well [[User:Ttenbergen|Ttenbergen]] 09:53, 2 November 2010 (CDT)
 
* the [[CCMDB.mdb]] used for formatting of data for import into [[TMSX and MedTMS]] is password protected
* the [[CCMDB.mdb]] used for formatting of data for import into [[TMSX and MedTMS]] is password protected
* computers are located in a locked office with limited access
* computers are located in a locked office with limited access
** Note: at the OAKS hospital due to renovations in progress the PDA itself is in a locked cabinet in an office in the Medical Records department itself.
** Note: at the OAKS hospital due to renovations in progress the PDA itself is in a locked cabinet in an office in the Medical Records department itself.
* PC data is stored on a folder on the [[Regional Server]] when possible; only the data collectors and the data managers have access to this folder.  
* PC data is stored on a folder on the [[Regional Server]] when possible; only the data collectors and the data managers have access to this folder.  


[[Category: IT Instructions]]
[[Category: IT Instructions]]
[[Category: Wiki Usage]]
[[Category: Wiki Usage]]

Revision as of 09:53, 2010 November 2

PHIA is the Personal Health Information Act of the province of Manitoba lays out how all patient data must be treated. Everyone who works for this program must have received WRHA PHIA training, and must have signed a PHIA declaration.

What PHIA means for this wiki

PHIA states that patient data must be kept private. The wiki is not private. This means that there must never be any information that could identify a patient in either

  • wiki articles
  • emails sent via the wiki

Measures to ensure patient privacy in our data collection

There are several security measures in place:

  • Pointsec, the encryption program recommended by eHealth for laptops, runs on the laptops
  • regular network login is required to the laptops for the first time
  • emailed service desk just now to find out if we can use Pointsec to encrypt the SD card as well Ttenbergen 09:53, 2 November 2010 (CDT)
  • computers are located in a locked office with limited access
    • Note: at the OAKS hospital due to renovations in progress the PDA itself is in a locked cabinet in an office in the Medical Records department itself.
  • PC data is stored on a folder on the Regional Server when possible; only the data collectors and the data managers have access to this folder.
Retrieved from "https://ccmdb.kuality.ca/index.php?title=PHIA&oldid=20564"