Scribd
Upload
89 views

Lesson XIIII - Group Task

The document discusses administrative, physical, and technical safeguards for health information systems and laboratory information systems. An example group recommended continuous training for users, strict testing procedures, and guidelines for proper disposal of specimens as administrative safeguards. For physical safeguards, they suggested maintaining controlled temperatures, periodic equipment maintenance, and biometrics for laboratory access. Technical safeguards included different authorizations based on user level, regular password updates, automated identity confirmation, and automatic log-offs after inactivity.

Uploaded by

Sheima Ainie Juripae
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
89 views

Lesson XIIII - Group Task

The document discusses administrative, physical, and technical safeguards for health information systems and laboratory information systems. An example group recommended continuous training for users, strict testing procedures, and guidelines for proper disposal of specimens as administrative safeguards. For physical safeguards, they suggested maintaining controlled temperatures, periodic equipment maintenance, and biometrics for laboratory access. Technical safeguards included different authorizations based on user level, regular password updates, automated identity confirmation, and automatic log-offs after inactivity.

Uploaded by

Sheima Ainie Juripae
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

LESSON XIV

ETHICS, PRIVACY, AND SECURITY

Group Task

Name of Student Mohadali, Ayman I.


Kamlani, Sarah
Year and Section BSMT – 1A

Name of Instructor Ma.Erma P. Dormido


December 9, 2020 Rating
Date Submitted

Form groups of five (5) and recommend other administrative, physical and technical
safeguards for HIS and LIS. Share your group’s summary to the rest of the class for 5
minutes.

• Administrative safeguards are the policies and procedures that help protect against a
breach. They determine documentation processes, roles and responsibilities, training
requirements, data maintenance policies and more. Administrative protections ensure
that the physical and technical protections are implemented properly and consistently.

Administrative Safeguards ✓ Continuous raining for the users of the LIS


✓ Review and strengthen the authorization and
supervision policies.
✓ Strict implementation of the rules and regulations for
the testing procedures
✓ Release and disseminate guidelines on the proper
disposal of laboratory specimen.

• Physical safeguards make sure data is physically protected. They include security
systems and video surveillance, door and window locks, and locations of servers and
computers. They even include policies about mobile devices and removing hardware
and software from certain locations.

Physical Safeguards ✓ Maintain controlled temperature both for equipment


and specimen
✓ Ensure the periodic maintenance of laboratory
equipment
✓ Have Biometrics or other security measures for
laboratory access.
✓ Use appropriate personal laboratory safety
equipment
• Technical safeguards are the technology and related policies that protect data from
unauthorized access. Each covered entity needs to determine which technical
safeguards are necessary and appropriate for the organization in order to protect its
ePHI. The Department of Health and Human Services states that you need to “establish
a balance between the identifiable risks and vulnerabilities to ePHI, the cost of various
protective measures, and the size, complexity and capabilities of the entity.”

Technical Safeguards ✓ Different authorizations based on user level


✓ Regular updating of passwords
✓ There should be an Automated identity confirmation
procedures for users requesting access.
✓ The unit should automatically log-off after a
specified period of inactivity.

You might also like