EMR Data Security

At TimeAcct, we work with clinics and EMR vendors across the country.  We perform data extractions and conversions on some of the most sensitive data around – patient medical data.  This means that we get to see how everyone treats and deals with their data.  The following blog posts contain some antidotes and some lessons as to things you should be aware of if you are dealing with the medical information in your EMR.  They can be summarized in the following points:

  1. Encrypt Everything
  2. Keep Data In the Country
  3. Don’t Use Consumer Internet Services

The goal of this section of the blog is to share some of the interesting situations we have encountered – to help others learn ways to better protect their patient’s data and to limit the clinic’s liability.

Case 1: I will just take it home with me

http://blogs.semrt.com/emr-data-security/case-1-i-will-just-take-my-old-emr-home-for-reference/

Case 2: Encrypt Removable Storage

http://blogs.semrt.com/emr-data-security/case-2-removable-storage-must-be-encrypted/

Case 3: Dangers of Email

http://blogs.semrt.com/emr-data-security/case-3-email-the-dangers-of-gmail-and-other-email-technology/

Product Recomendations:

http://blogs.semrt.com/emr-data-security/some-product-recommendations/

 

Leave a Reply