Health Information Management

EHR security: It’s everyone’s battle

HIM-HIPAA Insider, July 9, 2012

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

EHR security-that's an IT thing, right? Sure it is.

But is it just an IT thing? Far from it, says Frank ­Ruelas, MBA, principal of HIPAA College in Casa Grande, Ariz. HIM professionals will naturally have their hands on their facility's EHR, and there's never enough information, training, and policies on security.
 
"From mid-sized to small hospitals, the first thing people do when they talk about EHRs is they immediately equate it being electronic, so IT owns it," Ruelas says. "Of course, that's not the case. IT is certainly very integral in providing the infrastructure. … Sometimes we forget maybe it's not just IT, and really it's all of us, especially those folks who touch the medical records. It is an organizationalwide effort trying to get an EHR to work."
 
It's also a struggle to keep it secure. Luckily, HIM ­professionals can-and should-be involved in the ­security effort since, as Ruelas says, they will be constantly touching the electronic record. "You are going to be putting some of the most sensitive data in a single location," he says, "which can be compromised or really there can be losses."

Editor’s note: Click here to read more in the July issue of Medical Records Briefing.



Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

Most Popular