Ethical and Security Issues of HIT
HIT and impact on patient privacy
Health Information Technology is increasingly being adopted across the healthcare sector given its innumerable benefits in improving patient care and augmenting the delivery of care. With HIT, provision of cost effective healthcare is also plausible through nurses. However, with technology also comes varied challenges and chief among these issues that come with HIT is patient privacy. With recent news documenting massive breaches of patient information, the usefulness of HIT and possible adoption strategies have been largely watered down. According to McGonigle and Mastrian, (2014) the ethical concerns that come with HIT are equally worrisome since it affects a patient’s privacy. A patient’s information must only be released with the patient’s consent. In the case of minors and invalids, legal requirements guide the release and use of such patient information (Ben-Assuli, 2015). However, with HIT, a patient’s info may be accessible readily without consent.
Organizational challenge and solution
A while back, while working at a healthcare facility that embraced HIT, patient data was saved on a dedicated cloud server. According to the healthcare organization, this action prevented potential loss of patient data. However, the organization once faced a breach in the system since the data was protected by password but was not encrypted. By this action access to patient information including social security number, patient name and addresses was possible. A legal dispute would later on ensue as the data was leaked to insurers.
However, out of this ordeal, inclusion of firewalls, encryption and software to detect intrusion were put in place. According to Kellermann and Jones, (2013) technology based issues affecting HIT need technology based solutions. However nurses also play a vital role in collaborating with measures put in place to this end. Portable devices are also common in my organization. Portable devices are useful in ensuring quality patient care by facilitating timely and accurate delivery of care. With portable devices, potential medical errors are also minimized. However, these devices also offer potential challenges regarding the privacy of PHI. To mitigate these challenges, my organization ensures all portable devices are password protected with the need of authentication in order to access PHI. Encryptions are also used on all devices with remote disabling of data being embraced. File sharing applications are also disabled in such devices in order to prevent potential privacy breaches. Finally, security features have been used such as enabling firewalls and using updated software. Such efforts have been effective in mitigating the raised challenges regarding patient info.
Safeguarding patient information
A patient’s information and privacy may be safeguard through varied ways. Healthcare facilities may for instance, allow access to patient information by authorized personnel only. By limiting access as Furukawa, et al., (2014) observes, PHI (patient health information) would only be accessible by the requisite personnel. A nursing leader can also ensure that routine audits are conducted for the nurses to ensure compliance with a hospital’s policy on handling of patient information. For instance, when a nurse inappropriately tries to access patient info, the system can produce the nurses’ name among other such details such as the time. Such measures are vital as Porter-O'Grady and Malloch, (2015) notes since they determine whether the breach was intentional or unintentional. Ensuring compliance with HIPAA is a requisite of all healthcare organizations which are required to document all systems activity including hardware, software and procedural performances of the systems containing PHI.
Appraisal of measures taken
Implemented measures aimed at protecting patient information and prevent abuse and misuses have been effective to some extent. In our organization for instance, nurses have taken an active role in ensuring patient information is protected by ensuring adherence to laid down privacy rules. The organization has also ensured that laid down rules and proper audit is done on the nurses and other healthcare workers handling PHI. The result has been a drop in patient privacy issues and cases. With improved handling of patient data, patient care is also improved. Technology has been effective in ensuring improved patient care according to Jones, et al, (2014) and with proper adherence to set rules, patient care can only be enhanced. With the benefits of HIT in a nurse’s role, the risks must be mitigated and solutions to the presented challenges embraced. With good leadership and proper team work, achieving optimum quality care is plausible.
References
Ben-Assuli, O. (2015). Electronic health records, adoption, quality of care, legal and privacy issues and their implementation in emergency departments. Health Policy, 119(3), 287- 297.
Furukawa, M. F., King, J., Patel, V., Hsiao, C. J., Adler-Milstein, J., & Jha, A. K. (2014). Despite substantial progress in EHR adoption, health information exchange and patient engagement remain low in office settings. Health Affairs, 10-1377.
Jones, S. S., Rudin, R. S., Perry, T., & Shekelle, P. G. (2014). Health information technology: an updated systematic review with a focus on meaningful use. Annals of internal medicine, 160(1), 48-54.
Kellermann, A. L., & Jones, S. S. (2013). What it will take to achieve the as-yet-unfulfilled promises of health information technology. Health Affairs, 32(1), 63-68.
McGonigle, D., & Mastrian, K. (2014). Nursing informatics and the foundation of knowledge. Jones & Bartlett Publishers.
Porter-O'Grady, T., & Malloch, K. (2015). Leadership in nursing practice. Jones & Bartlett Publishers.
