RACGP releases revised information security guidelines
The Royal Australian College of General Practitioners (RACGP) has released its revised computer and information security standards (CISS) guidelines, which provide general practices with information and recommendations about contemporary security issues and help protect against potential loss of sensitive data.
The intent of the second edition CISS is to provide a framework, accompanied by practical templates and a workbook, to protect electronic business and clinical information within a healthcare setting.
The new edition incorporates participation and legislative requirements for the PCEHR, a compliance indicator checklist, and a compliance indicator matrix and explanatory notes for each of the 12 computer and information security standards.
John Bennett, chair of the RACGP's national standards committee for eHealth, said it was essential that GPs and their practice teams implement computer security measures to protect business and clinical information.
“Computer and information security is not optional; it is an essential professional and legal requirement for using computer systems in the delivery of safe quality healthcare,” Dr Bennett said in a statement.
“By securing content held in practice information systems, the practice not only maintains professional responsibilities to patients and ensures practice information remains accessible and accurate, it lessens the risk of greater security breaches and the negative effects these create.”
The CISS provides a record of the 12 basic computer and information securities that should be undertaken across all general practices.
The accompanying workbook, when completed by practice staff, forms part of the general practice’s policies and procedures manual and is becoming more of an integral component of practice life as the profession moves towards the shared management of patient records with the PCEHR.
The college said the CISS was developed to meet recognised best practices and is aligned with international and Australian standards, current Australian legislation and meets the National Privacy Principles and the national standards in health information security.
The CISS is available for free from the RACGP website.
Posted in Australian eHealth