Privacy and managing health information in general practice
Last revised: 24 May 2023
Effective information security practices and policies are essential to ensure the privacy of health and business information. Additionally, the use of healthcare identifiers instead of names is useful to protect privacy along with establishing clear policies for the use of information in health research.
Dr Murray, a GP, has been approached by a patient with an abscess on his leg. During the consultation, Dr Murray remembers a seminar, led by a professor from Canada, that discussed very similar wounds.
Dr Murray considers it appropriate to refer the wounds to the professor and takes several photographs of the abscess on his patient’s leg. These photographs were later emailed to Canada along with significant extracts of the patient’s notes (including some personal information).
Inadvertently, Dr Murray is likely to have breached the cross-border disclosure laws. Dr Murray could have managed the situation better if he:
Your practice policy and procedures should include clearing screens for privacy.
Your policy should cover the following:
Your practice policy and procedures should include clearing desks for the purpose of securing information and data.
Your policy should remind staff that:
Advertising