Building a better mis trap composition

Introduction

In such a case study, My spouse and i am behaving as a CEO. The situation in front of you involves the breach info on people who have been observed in our establishments that are HIV positive. My personal job can be on the line until I act expeditiously to solve the situation. I actually hired a computer security expert who is undercover as a nurse manager inside the organization to determine how it absolutely was possible for the violations against HIPPA (Health Insurance Transportability and Answerability Act) polices concerning the 4, 000 patients whose info was leaked out to the public through newspapers, magazines, as well as the Internet.

Her findings were problematic and involved unattended computers that were logged into by workers, passwords shared and not stored confidential or changed frequently or quickly seen and identified, fax machines and printers very easily accessed simply by anyone, distant access to the system even from our homes, and straightforward access to delicate patient documents.

Two Significant Issues

The 2 major problems identified in this situation may be the violation against HIPPA polices which is a US law created to provide privacy standards to protect patients’ medical records and also other health information provided to wellness plans, doctors, hospitals and also other health care providers.

This was an act developed by the Department of Into the Human Solutions, in which fresh standards provide patients with access to all their medical documents and more control of how their particular personal information about health is used and disclosed. The HIPAA Privateness Rule provides federal rights for personal information about health held simply by covered entities and gives individuals an array of rights with respect to that information. At the same time, the Privacy Rule can be balanced in order that it permits the disclosure of personal health information essential for patient proper care and other essential purposes (HHS. gov 2011). Theother concern involves a great outdated LOS (management details system). This technique needs to be faultless in protecting patient’s rights. Access should be limited, accounts changed monthly, and for workers to respect the system and never share account details and sign off the system the moment leaving all their station’s for any reason.

Resolution

My initial task will be to hold a meeting with the managers in all departments to discuss the formalities on the new updated system being installed and also to hand out procedures regarding security password sharing or perhaps leaving this visible and leaving un monitored stations which have been logged on. I will address HIPPA standards with all staff again, and for those people sharing security passwords, their placement with us will be terminated due to violations against company plan and for ignoring HIPPA rules. For the methods being terminated, I would execute one on one meetings with those to inform them with their termination. Another quick fix would be to change the structure of the business office to secure ink jet printers and fax machines. Employees here should know the significance of this condition and consider immediate actions to secure their jobs and protect our patient’s privacy.

With going out the new system, accessing information at home would be impossible. The MIS system will be more reliable in keeping person’s information safe. With the personnel not posting passwords and constantly need to change their particular passwords just about every 90 days our bodies can provide the security necessary to protect the privileges of sufferers, even on a federal level.

Works Reported

U. S Division of Health insurance and Human Services. (n. deb. ). Gathered September 29, 2011, via http://www.hhs.gov/ocr/privacy/hipaa/understanding/index.html

1

Tweet