Jove
Visualize
Contact Us
JoVE
x logofacebook logolinkedin logoyoutube logo
ABOUT JoVE
OverviewLeadershipBlogJoVE Help Center
AUTHORS
Publishing ProcessEditorial BoardScope & PoliciesPeer ReviewFAQSubmit
LIBRARIANS
TestimonialsSubscriptionsAccessResourcesLibrary Advisory BoardFAQ
RESEARCH
JoVE JournalMethods CollectionsJoVE Encyclopedia of ExperimentsArchive
EDUCATION
JoVE CoreJoVE BusinessJoVE Science EducationJoVE Lab ManualFaculty Resource CenterFaculty Site
Terms & Conditions of Use
Privacy Policy
Policies

Related Experiment Videos

Installing an appropriate information security policy

N Gaunt1

  • 1Plymouth Hospitals NHS Trust, Public Health Laboratory, UK.

International Journal of Medical Informatics
|September 2, 1998
PubMed
Summary

Protecting personal health information requires understanding staff needs and attitudes. Implementing a security policy, combined with user input, fosters a stronger security culture in healthcare settings.

Related Concept Videos

You might also read

Related Articles

Articles linked to this work by shared authors, journal, and citation graph.

Sort by
Same author

Skin cancers in lockdown: no impact on pathological tumour staging.

The British journal of dermatology·2021
Same author

Proton pump inhibitors as a risk factor for Clostridium difficile diarrhoea.

The Journal of hospital infection·2003
Same author

Practical approaches to creating a security culture.

International journal of medical informatics·2001
Same author

The information superhijack.

The Journal of hospital infection·2000
Same author

Security of the electronic health care record--professional and ethical implications.

Studies in health technology and informatics·1995
Same author

Necrotising fasciitis due to group C and G haemolytic streptococcus after chiropody.

Lancet (London, England)·1984

Area of Science:

  • Health Informatics
  • Information Security
  • Organizational Behavior

Background:

  • Patient and healthcare staff awareness of personal health data protection measures is insufficient.
  • Developing effective information and security policies necessitates considering staff attitudes and educational requirements.

Purpose of the Study:

  • To explore the development and implementation of an information and security policy in a healthcare environment.
  • To assess the impact of user attitudes and educational needs on policy development.
  • To foster a 'security culture' within a healthcare organization.

Main Methods:

  • A combined approach of risk analysis and user attitude surveys was employed.
  • A participational method, adapting the ETHICS soft systems methodology, was used for procedure development.
Keywords:
Professional Patient Relationship

Related Experiment Videos

  • Implementation occurred over several years in a large District General Hospital.
  • Main Results:

    • A 'security culture' has started to emerge within the organization.
    • The integrated approach addressed user attitudes and educational needs effectively.
    • Sustaining the security culture requires ongoing promotion and procedural adaptation.

    Conclusions:

    • A participational approach integrating risk analysis and user feedback is effective for developing healthcare information security policies.
    • Establishing a sustainable 'security culture' depends on continuous policy promotion and adaptability.
    • Addressing staff attitudes and educational needs is crucial for enhancing data protection in healthcare.