hot privacy issues
play

HOT!! Privacy Issues: Handle with care . . . . . . . . . . . . . . - PowerPoint PPT Presentation

Feb 06, 2024 •387 likes •850 views

September, 2015 HOT!! Privacy Issues: Handle with care . . . . . . . . . . . . . . . . . . . Micheal Harding Legislative & Policy Analyst Legislative Unit Manitoba Health, Healthy Living and Seniors By the end of 2016, the medication,

  1. September, 2015 HOT!! Privacy Issues: Handle with care… . . . . . . . . . . . . . . . . . . . Micheal Harding Legislative & Policy Analyst Legislative Unit Manitoba Health, Healthy Living and Seniors

  2. By the end of 2016, the medication, diagnostic imaging, laboratory results and immunization records of every Canadian will be available electronically to doctors, nurses and other clinicians, according to Dan Strasbourg, spokesman for Canada Health Infoway. - The Globe and Mail, Jan. 26 2012

  3. Concerns over Privacy • 61.9% breaches reduce confidence in the quality of healthcare • 31.3% would postpone seeking care • 43.2% would withhold information • 50.6% would seek care from a different provider • 42.9% would seek care outside of their community 2011 Fairwarning.com Survey – Canada: How Privacy Considerations Drive Patient Decisions and Impact Patient Care Outcomes

  10. Recent Breaches Across Canada

  11. Recent Breaches Across Canada While standing in line for pizza, a hospital doctor chatted on his cell phone about the private details of a patient, unaware the patient’s relative was in the same line .

  12. Recent Breaches Across Canada Toronto mayor Rob Ford’s medical records were improperly read by hospital staff from 5 hospitals after his cancer diagnosis.

  13. Recent Breaches Across Canada A dozen staff members at a hospital were caught prying into the medical file of a 20- year-old man who committed suicide under hospital care.

  14. Recent Breaches Across Canada Five staff members snooped into the medical records of 22 patients at an addiction and mental health centre.

  15. Recent Breaches Across Canada An Alberta Children’s Hospital staff member snooped into the records of 247 children’s hospital records.

  16. Recent Breaches Across Canada Western Health Regional Health Authority in Newfoundland is facing a class action lawsuit after a accounting clerk inappropriately viewed the records of 1,043 patients

  17. Recent Breaches Across Canada Two Ontario hospital employees allegedly sold the personal information of 14,450 patients to private RESP companies.

  18. Recent Breaches Across Canada A hospital inappropriately provided PHI of 20K new mothers to baby photographers.

  19. Recent Breaches Across Canada In Alberta, an unencrypted laptop belonging to an information technology consultant containing the names, dates of birth, provincial health card numbers, billing codes and diagnostic codes of 620,000 patients was stolen.

  20. Recent Breaches Across Canada Seven health ministry employees in BC allegedly passed the personal health records of millions of British Columbians to contracted researchers on unencrypted computer memory sticks and flash drives.

  21. HOT!! Privacy Issue #5: Portable Electronic Devices

  23. How to protect yourself... • Be aware of organization policy requirements regarding the use of PEDs • Be sure to only used approved devices • Be sure that OS software is routinely updated • Training, training, training • Be sure the benefits outweigh the risks

  24. HOT!! Privacy Issue #4: Social Networking

  26. In 2011 an Edmonton pharmacist pleaded guilty to illegally accessing and disclosing PHI on Facebook. The resulting investigation revealed that the pharmacist had been fighting with a group of women at her church in the summer of 2009 about the romantic activities and interests of a man in the same congregation. The pharmacist was convicted under the Health Information Act, fined $15,000 by the province, was ordered by her regulatory body to pay fines and the cost of proceedings totaling an additional $15,000, and was suspended from practice for four months.

  27. How to protect yourself... • do not post PHI or photos of clients or co-workers without specific authorization – even if they can’t be identified • posting photos or videos that reveal room numbers or patient records • descriptions of patients, their medical conditions, and/or treatments • referring to patients in a degrading or demeaning manner • seriously consider the implications of accepting invitations from clients to their or your social media platform - Nurses without Borders * Italicized items are added

  28. HOT!! Privacy Issue #3: Record of User Activity Protection

  29. What is a Record of User Activity? a) The highest amount of user activity ever recorded as reported in the Guinness Book of World Records. b) A collection of songs about user activity on an analog sound storage medium. c) A record of accesses to PHI by electronic health information system users.

  30. Record of User Activity • The Personal Health Information Regulation requires trustees to maintain a record of user activity for any electronic information system it uses to maintain PHI, which identifies the following: a) individuals whose PHI has been accessed, b) persons who accessed PHI, c) when PHI was accessed, d) the electronic information system or component of the system in which PHI was accessed, e) whether PHI that has been accessed is subsequently disclosed under section 22 of the Act; Trustees are required by the Guidelines for Records of User Activity to provide this record upon request.

  31. Auditing • The Ministerial Guidelines for Records of User Activity requires trustees to audit records of user activity to detect security breaches. Audits could be conducted on any or all of the following triggers: – attempts to access information based on same family name, address or user name, human resource related events, media related events, or high profile names; – high volume of activity associated with a single subject of care. – a complaint or report is received from any individual respecting possible unauthorized access to, or use or disclosure of PHI. – an employee’s employment with the department is terminated; – an employee’s access to a health information system is removed for any reason;

  32. An emergency room doctor admitted that she was responsible for accessing restricted records in Alberta Netcare using the logins of 12 other doctors. On 21 occasions, the doctor used computers in the emergency department of the Edmonton Misericordia Hospital to access records after the previous user had not logged out, and did so knowing that her personal ID would not show up in the computer’s logs as a result. The doctor was suspended from medical practice for 60 days, and was ordered to take an ethics course and to pay $22,232.59 to cover the cost of the investigation. - St. Albert Gazette, March 28, 2013

  33. How to protect yourself... • Do not share passwords for information systems. • Protect your password at all times. • Lock your terminal when you leave it. • Log out of the network at the end of your shift.

  34. HOT!! Privacy Issue #2: “No Breach” Myth

  35. Myths Its not a breach if… • Only demographic info is used or disclosed • PHI is not disclosed, merely looked at • I look at my own PHI • I have family/friend consent • PHI is inadvertently disclosed, lost or stolen but recovered

  36. HOT!! Privacy Issue #1: Snooping

  37. Examples of Privacy Breaches by Locality Rurally based care providers • Local government official snooping • Neighbor snooping • Extended family member snooping

  38. Examples of Privacy Breaches by Locality Metropolitan based care providers • Sports star snooping • Federal or state government official snooping • High profile business personality snooping • High profile celebrity/media personality snooping • Traditional identity theft • Medical identity theft

  39. Examples of Privacy Breaches by Locality All care providers regardless of locality • Care provider employees visiting as a patient • Immediate Family member snooping • Child custody cases • Criminal suspects covered in media • Billing and fraud related

  40. Consequences of Breaches • To Patients • Survey results

  41. Consequences of Breaches • To Patients • To Employees • Privacy Commission of Ontario Video

  42. Is it worth it?

  43. Consequences of Breaches • To Patients • To Employees • To Organizations Impact Categories 1. Reputation 2. Financial 3. National [ Public ] Interest 4. Operations 5. Legal - Treasury Board of Canada Secretariat

  44. In a significant decision released in February of this year, the Ontario Court of Appeal ruled that a private plaintiff may bring a class proceeding for damages in tort against Peterborough Regional Health Centre for the unauthorized access to personal health information.

  46. For more information, contact: Micheal Harding Legislative Unit Manitoba Health, Healthy Living and Seniors Tel: (204) 788-6612 Email: Micheal.Harding@gov.mb.ca

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Simone Fischer-Hbner Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues (LBS, RFID,...) IV. European Privacy Legislation/ Directives I. Definition Warren & Brandeis 1890 The right to

694 views • 30 slides
Do You Need A Chief Privacy Offjcer? Steven C. Bennett If you face privacy issues on a regular

Do You Need A Chief Privacy Offjcer? Steven C. Bennett If you face privacy issues on a regular

Do You Need A Chief Privacy Offjcer? Steven C. Bennett If you face privacy issues on a regular basis, then you probably need a CPO. RECENT STATUTORY and regulatory developments in the United States and overseas (especially Europe) have created

384 views • 4 slides
Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start with encryption With good encryption, data values not readable So whats the problem? Lecture 17 Page 1 CS 236 Online Traffic Analysis

532 views • 21 slides
Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole Polytechnique 1 Plan of the talk General introduction to privacy issues A naive approach to privacy protection: anonymization Why it

740 views • 44 slides
AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data

AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data

AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data Protection and Ethics Contents Privacy in the Digital age: main issues Ethics: definitions and background Privacy challenges in Health

713 views • 23 slides
THE EVOLVING ZONES OF PRIVACY: SAFEGUARDING THIRD PARTY INFORMATION AND MINIMIZING PRIVACY CLAIM

THE EVOLVING ZONES OF PRIVACY: SAFEGUARDING THIRD PARTY INFORMATION AND MINIMIZING PRIVACY CLAIM

THE EVOLVING ZONES OF PRIVACY: SAFEGUARDING THIRD PARTY INFORMATION AND MINIMIZING PRIVACY CLAIM EXPOSURE Presented By LAURA J. COE INTRODUCTION Why Privacy Law Issues Matter During 2017, over 1,500 data breaches resulted in:

586 views • 57 slides
Privacy Computer Security Peter Reiher December 11, 2014 Lecture 16 Page 1 CS 136, Fall 2014

Privacy Computer Security Peter Reiher December 11, 2014 Lecture 16 Page 1 CS 136, Fall 2014

Privacy Computer Security Peter Reiher December 11, 2014 Lecture 16 Page 1 CS 136, Fall 2014 Privacy Data privacy issues Network privacy issues Some privacy solutions Lecture 16 Page 2 CS 136, Fall 2014 What Is Privacy?

789 views • 63 slides
Electronic Spying and Tracking Spouses in Divorce: Admissibility and Privacy Issues Navigating

Electronic Spying and Tracking Spouses in Divorce: Admissibility and Privacy Issues Navigating

Presenting a live 90-minute webinar with interactive Q&A Electronic Spying and Tracking Spouses in Divorce: Admissibility and Privacy Issues Navigating Evidentiary Issues With Spyware, GPS Trackers, Cell Phone Forensics, Wiretaps, Social

1.09k views • 107 slides
Privacy & PETs Simone Fischer-Hbner SWITS PhD course, 2012 1 st Session, 3rd May 2012, KTH

Privacy & PETs Simone Fischer-Hbner SWITS PhD course, 2012 1 st Session, 3rd May 2012, KTH

Privacy & PETs Simone Fischer-Hbner SWITS PhD course, 2012 1 st Session, 3rd May 2012, KTH Overview I. Privacy - Definition II. EU Directives & Basic Privacy Principles III. Privacy Issues (LBS, Social Networks, RFID...) IV.

683 views • 56 slides
Privacy Issues and Data Protection in Technology Enhanced Learning Seda Grses COSIC, K.U.

Privacy Issues and Data Protection in Technology Enhanced Learning Seda Grses COSIC, K.U.

Privacy Issues and Data Protection in Technology Enhanced Learning Seda Grses COSIC, K.U. Leuven dataTEL 2011 Alpines Rendez-vous Thursday, March 31, 2011 1 - mendeley: - group: privacy and dataTEL - slides: - after talk: -

541 views • 39 slides
Privacy Issues of Privacy Issues of Provenance in Provenance in Electronic Healthcare

Privacy Issues of Privacy Issues of Provenance in Provenance in Electronic Healthcare

Tam s s Kifor Kifor, , Tam L szl szl Z. Z. Varga Varga, , L Sergio lvarez lvarez, , Sergio Javier V V zquez zquez- -Salceda Salceda, , Javier Steven Willmott Willmott Steven Privacy Issues of

470 views • 20 slides
Internet Privacy Options Options Other Issues Networking Sirindhorn International Institute of

Internet Privacy Options Options Other Issues Networking Sirindhorn International Institute of

Networking Privacy Options The Internet Internet Security Internet Privacy Options Options Other Issues Networking Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 19 June 2014

805 views • 38 slides
Parents, teenagers, and student privacy issues Engineering & Public

Parents, teenagers, and student privacy issues Engineering & Public

CyLab Parents, teenagers, and student privacy issues Engineering & Public Policy Abby Marsh With thanks to Rebecca Balebako and Manya Sleeper y & c S a e v c i u

485 views • 20 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
BDVe Meetup Workshop Session Technology solutions for privacy issues: what is the best way

BDVe Meetup Workshop Session Technology solutions for privacy issues: what is the best way

BDVe Meetup Workshop Session Technology solutions for privacy issues: what is the best way forward? May 14, 2018 from 17.00 to 18.30 BDVe Meetup, Sofia (BG) e-SIDES Workshop - Sofia, Bulgaria Technology solutions for privacy issues: what is the

249 views • 22 slides
Kathleen B. Roberts OIg issues three Corporate Compliance and reports on adverse Privacy

Kathleen B. Roberts OIg issues three Corporate Compliance and reports on adverse Privacy

Volume Eleven Number Four April 2009 Published Monthly Earn CEU Credit www . hcca - InfO . Org / quIz , see page 27 Meet Kathleen B. Roberts OIg issues three Corporate Compliance and reports on adverse Privacy Officer, Baptist Health events

86 views • 7 slides
CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS

CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS

CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS This presentation contains, and our officers and representatives may from time to time make, forward - looking statements within the meaning of

379 views • 14 slides
Integrating business and conservation. The way forward or a slide into greenwashed oblivion?

Integrating business and conservation. The way forward or a slide into greenwashed oblivion?

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/304655344 Integrating business and conservation. The way forward or a slide into greenwashed oblivion? Presentation June 2016 DOI:

435 views • 24 slides
Investing in Royalties March 2013 Important Notice and Disclaimer Certain statements in this

Investing in Royalties March 2013 Important Notice and Disclaimer Certain statements in this

Investing in Royalties March 2013 Important Notice and Disclaimer Certain statements in this presentation, other than statements of historical fact, are forward-looking By its nature, this information is subject to inherent risks and

609 views • 46 slides
Vivo Energy 2 0 1 8 I nterim Results Thursday, 2 nd August 2018 Transcript produced by Global

Vivo Energy 2 0 1 8 I nterim Results Thursday, 2 nd August 2018 Transcript produced by Global

Vivo Energy 2 0 1 8 I nterim Results Thursday, 2 nd August 2018 Transcript produced by Global Lingo London - 020 7870 7100 www.global-lingo.com Vivo Energy 2018 Interim Results Thursday, 2 nd August 2018 I ntroduction and Business Update

421 views • 14 slides
Welcome to the Impact of COVID-19 in the Affordable Credit sector: Rapid Response Survey. Your

Welcome to the Impact of COVID-19 in the Affordable Credit sector: Rapid Response Survey. Your

Welcome to the Impact of COVID-19 in the Affordable Credit sector: Rapid Response Survey. Your co hosts Prof Karl Dayson (Salford University) and Very Rev Dr John Chalmers (Carnegie UK Trust, Affordable Credit Action Group Chair) will start

315 views • 8 slides
Presentation Overview Discuss how to recognize and manage conflicts of interest Introduce

Presentation Overview Discuss how to recognize and manage conflicts of interest Introduce

9/21/2017 Conflicts Essentials Webinar Practice Advisors: Nancy Carruthers and Elizabeth Aspinall September 21, 2017 Presentation Overview Discuss how to recognize and manage conflicts of interest Introduce the new Conflicts Learning

541 views • 15 slides
News From MCIT Minnesota Association of County Administrators Technical Day of Training July 30,

News From MCIT Minnesota Association of County Administrators Technical Day of Training July 30,

News From MCIT Minnesota Association of County Administrators Technical Day of Training July 30, 2014 By Robyn Sykes, MCIT Executive Director Head eadline ines Dividends Rates Emerging Issues Resources Div Divid idend nds

396 views • 14 slides
Do You See What I See? Navigating Human & Cyber Threats at the Workplace The views expressed

Do You See What I See? Navigating Human & Cyber Threats at the Workplace The views expressed

Do You See What I See? Navigating Human & Cyber Threats at the Workplace The views expressed by us are not representative of the City of Charlotte. OUTLINE INTRODUCTIONS HUMAN THREATS CYBER THREATS QUESTIONS INTRODUCTIONS

445 views • 25 slides

More recommend