Deterrence approach on the compliance with electronic medical records privacy policy: the moderating role of computer monitoring

Abstract Background This study explored the possible antecedents that will motivate hospital employees’ compliance with privacy policy related to electronic medical records (EMR) from a deterrence perspective. Further, we also investigated the moderating effect of computer monitoring on relationships among the antecedents and the level of hospital employees’ compliance intention. Methods Data was collected from a large Taiwanese medical center using survey methodology. A total of 303 responses was analyzed via hierarchical regression analysis. Results The results revealed that sanction severity and sanction certainty significantly predict hospital employees’ compliance intention, respectively. Further, our study found external computer monitoring significantly moderates the relationship between sanction certainty and compliance intention. Conclusions Based on our findings, the study suggests that healthcare facilities should take proactive countermeasures, such as computer monitoring, to better protect the privacy of EMR in addition to stated privacy policy. However, the extent of computer monitoring should be kept to minimum requirements as stated by relevant regulations.

Download Full-text

How can hospitals better protect the privacy of electronic medical records? Perspectives from staff members of health information management departments

Health Information Management Journal ◽

10.1177/1833358316671264 ◽

2016 ◽

Vol 46 (2) ◽

pp. 87-95 ◽

Cited By ~ 8

Author(s):

Ming-Ling Sher ◽

Paul C Talley ◽

Tain-Junn Cheng ◽

Kuang-Ming Kuo

Keyword(s):

Health Information ◽

Information Management ◽

Electronic Medical Records ◽

Medical Records ◽

Survey Methodology ◽

Health Information Management ◽

Healthcare Facilities ◽

Staff Members ◽

Security Breaches ◽

Financial Pressure

Purpose: The adoption of electronic medical records (EMR) is expected to better improve overall healthcare quality and to offset the financial pressure of excessive administrative burden. However, safeguarding EMR against potentially hostile security breaches from both inside and outside healthcare facilities has created increased patients’ privacy concerns from all sides. The aim of our study was to examine the influencing factors of privacy protection for EMR by healthcare professionals. Method: We used survey methodology to collect questionnaire responses from staff members in health information management departments among nine Taiwanese hospitals active in EMR utilisation. A total of 209 valid responses were collected in 2014. We used partial least squares for analysing the collected data. Results: Perceived benefits, perceived barriers, self-efficacy and cues to action were found to have a significant association with intention to protect EMR privacy, while perceived susceptibility and perceived severity were not. Conclusion: Based on the findings obtained, we suggest that hospitals should provide continuous ethics awareness training to relevant staff and design more effective strategies for improving the protection of EMR privacy in their charge. Further practical and research implications are also discussed.

Download Full-text

Compliance With Electronic Medical Records Privacy Policy: An Empirical Investigation of Hospital Information Technology Staff

INQUIRY The Journal of Health Care Organization Provision and Financing ◽

10.1177/0046958017711759 ◽

2017 ◽

Vol 54 ◽

pp. 004695801771175 ◽

Cited By ~ 4

Author(s):

Ming-Ling Sher ◽

Paul C. Talley ◽

Ching-Wen Yang ◽

Kuang-Ming Kuo

Keyword(s):

Information Technology ◽

Electronic Medical Records ◽

Behavioral Intention ◽

Medical Records ◽

Privacy Protection ◽

Survey Methodology ◽

Skills Training ◽

Care Quality ◽

Equation Modeling ◽

The employment of Electronic Medical Records is expected to better enhance health care quality and to relieve increased financial pressure. Electronic Medical Records are, however, potentially vulnerable to security breaches that may result in a rise of patients’ privacy concerns. The purpose of our study was to explore the factors that motivate hospital information technology staff’s compliance with Electronic Medical Records privacy policy from the theoretical lenses of protection motivation theory and the theory of reasoned action. The study collected data using survey methodology. A total of 310 responses from information technology staff of 7 medical centers in Taiwan was analyzed using the Structural Equation Modeling technique. The results revealed that perceived vulnerability and perceived severity of threats from Electronic Medical Records breaches may be used to predict the information technology staff’s fear arousal level. And factors including fear arousal, response efficacy, self-efficacy, and subjective norm, in their turn, significantly predicted IT staff’s behavioral intention to comply with privacy policy. Response cost was not found to have any relationship with behavioral intention. Based on the findings, we suggest that hospitals could plan and design effective strategies such as initiating privacy-protection awareness and skills training programs to improve information technology staff member’s adherence to privacy policy. Furthermore, enhancing the privacy-protection climate in hospitals is also a viable means to the end. Further practical and research implications are also discussed.

Download Full-text

Electronic Medical Records, HIPAA, and Patient Privacy

Health Information Systems ◽

10.4018/978-1-60566-988-5.ch116 ◽

2011 ◽

pp. 1795-1804

Author(s):

Jingquan Li ◽

Michael J. Shaw

Keyword(s):

Electronic Medical Records ◽

Medical Records ◽

Cancer Center ◽

Patient Privacy ◽

Healthcare Organizations ◽

Privacy And Security ◽

University Of Texas ◽

Healthcare It ◽

The University

The continued growth of healthcare information systems (HCIS) promises to improve quality of care, lower costs, and streamline the entire healthcare system. But the resulting dependence on electronic medical records (EMRs) has also kindled patient concern about who has access to sensitive medical records. Healthcare organizations are obliged to protect patient records under HIPAA. The purpose of this study is to develop a formal privacy policy to protect the privacy and security of EMRs. This article describes the impact of EMRs and HIPAA on patient privacy in healthcare. It proposes access control and audit log policies to safeguard patient privacy. To illustrate the best practices in the healthcare industry, this article presents the case of the University of Texas M. D. Anderson Cancer Center. The case demonstrates that it is critical for a healthcare organization to have a privacy policy.

Download Full-text

A Deterrence Approach to Regulate Nurses’ Compliance with Electronic Medical Records Privacy Policy

Journal of Medical Systems ◽

10.1007/s10916-017-0833-1 ◽

2017 ◽

Vol 41 (12) ◽

Cited By ~ 5

Author(s):

Kuang-Ming Kuo ◽

Paul C. Talley ◽

Ming-Chien Hung ◽

Yen-Liang Chen

Keyword(s):

Electronic Medical Records ◽

Medical Records ◽

Download Full-text

Effective Use of Mobile Electronic Medical Records by Medical Interns in Real Clinical Settings: Mixed Methods Study (Preprint)

10.2196/preprints.23622 ◽

2020 ◽

Author(s):

SuJin Kim ◽

Seulji Ku ◽

Taerim Kim ◽

Won Chul Cha ◽

Kwang Yul Jung

Keyword(s):

Health Care ◽

South Korea ◽

Electronic Medical Records ◽

Medical Records ◽

Inverse Relationship ◽

Medical Center ◽

Tertiary Hospital ◽

Mixed Methods Study ◽

Task Completion ◽

Workflow Efficiency

BACKGROUND In South Korea, most graduated medical students undertake a 1-year internship before beginning residency and specialization. Interns usually work in a tertiary hospital and rotate between different, randomly assigned departments to be exposed to different medical specialties. Their jobs are mostly simple and repetitive but are still essential for the patient care process. However, owing to the lack of experience and overwhelming workload, interns at tertiary hospitals in South Korea are usually inefficient, often delaying the entire clinical process. Health care providers have widely adopted mobile electronic medical records (mEMRs) as they have been shown to improve workflow efficiency. OBJECTIVE This study investigates the association between the frequency of mEMR usage and the clinical task completion interval time among interns in a tertiary hospital. METHODS This mixed methods study was conducted at the Samsung Medical Center, Seoul, South Korea. Interns who worked at the Samsung Medical Center from March 2018 to February 2019 were included. The hospital electronic medical record (EMR) system known as DARWIN (Data Analysis and Research Window for Integrated kNowledge) was launched with PC and mobile. Both versions are actively used in hospitals by personnel in various positions. We collected the log data from the mEMR server and the intern clinical task time-series data from the EMR server. Interns can manage the process of identifying patients, assigning the clinical task, finishing the requested clinical intern tasks, etc, through the use of the mEMR system. We compared the clinical task completion interval among 4 groups of interns divided by the mEMR frequency quantile. Then, System Usability Score (SUS) questionnaires and semistructured interviews were conducted. RESULTS The regular mEMR users were defined as those who logged in more than once a day on average and used the mEMR until the level after login. Among a total of 87 interns, 84 used the mEMR to verify the requested clinical tasks. The most frequently used item was “Intern task list.” Analysis of the 4 intern groups revealed an inverse relationship between the median time of the task completion interval and the frequency of mEMR use. Correlation analysis showed that the intern task completion time interval had a significant inverse relationship with the individual frequency of mEMR usage (coefficient=-0.27; 95% CI -0.46 to -0.04; <i>P</i>=.02). In the additional survey, the mean SUS value was 81.67, which supported the results of the data analysis. CONCLUSIONS Our findings suggest that frequent mEMR use is associated with improved work efficiency in hospital interns with good usability of the mEMR. Such finding supports the idea that the use of mEMR improves the effectiveness and workflow efficiency of interns working in hospitals and, more generally, in the context of health care.

Download Full-text

Access to Shared Electronic Medical Records to Improve Adherence and Management of Discharge Medications

The Senior Care Pharmacist ◽

10.4140/tcp.n.2021.49 ◽

2021 ◽

Vol 36 (1) ◽

pp. 49-55

Author(s):

Vinita Mistry ◽

Meghan McKee

Keyword(s):

Real Time ◽

Electronic Medical Records ◽

Medical Records ◽

Medical Center ◽

Transitions Of Care ◽

Home Based Primary Care ◽

Pharmacist Interventions ◽

Home Based ◽

Acute Care Facilities ◽

The Impact

Objective: The aim of the study is to assess the impact of shared electronic medical records (EMR) on the ability of pharmacists to provide medication reconciliation and clinical interventions in home-based primary care (HBPC) veterans hospitalized outside of the Veterans Affairs Medical Center (VAMC). Design: This was a single-centered, retrospective quality improvement study. An assessment of medical records was conducted to analyze changes in ability to conduct medication reconciliations and interventions in HBPC Veterans hospitalized prior- to and postaccess to shared EMR systems with local non-VA acute care facilities. Setting: VAMC. Patients: HBPC veterans hospitalized outside of the VAMC. Ninety-eight veteran cases were assessed and 59 enrolled into the retrospective study. Interventions: Impact of access to real-time shared EMR systems outside of the VAMC facility on the ability to provide appropriate and timely medication reconciliations and interventions. Main Outcome Measures: Data collection occurred between January and March 2019 and January and March 2020. Number of medication reconciliations conducted, pharmacist interventions made, and time taken to complete transitions of care (TOC) evaluations following hospital discharge were assessed. Results: The number of medication reconciliations completed preaccess to shared EMR was 41.9% versus 85.7% in the postaccess group. The percent hospitalizations with pharmacist interventions was 35.5% preaccess and 60.7% postaccess. The mean number of days to complete a TOC note following discharge from the hospital was 15.2 (±20.2) days preaccess versus 5.3 (±5.7) days postaccess. Conclusions: Shared EMR systems provide pharmacists reliable and real-time access to patient chart data, laboratory results, and discharge summaries, allowing for timelier medication reconciliations and clinical pharmacist interventions.

Download Full-text

Continuance compliance of privacy policy of electronic medical records: the roles of both motivation and habit

BMC Medical Informatics and Decision Making ◽

10.1186/s12911-018-0722-7 ◽

2018 ◽

Vol 18 (1) ◽

Author(s):

Kuang Ming Kuo ◽

Yu Chang Chen ◽

Paul C. Talley ◽

Chi Hsien Huang

Keyword(s):

Electronic Medical Records ◽

Medical Records ◽

Download Full-text

Severe obesity is associated with higher in-hospital mortality in a cohort of patients with COVID-19 in the Bronx, New York

10.1101/2020.05.05.20091983 ◽

2020 ◽

Cited By ~ 1

Author(s):

Leonidas Palaiodimos ◽

Damianos G. Kokkinidis ◽

Weijia Li ◽

Dimitrios Karamanis ◽

Jennifer Ognibene ◽

...

Keyword(s):

New York ◽

Hospital Mortality ◽

Electronic Medical Records ◽

Medical Records ◽

Severe Obesity ◽

Medical Center ◽

Underrepresented Minorities ◽

Oxygen Requirement ◽

Prevalence Of Obesity ◽

Male Sex

ABSTRACTBackground & AimsNew York is the current epicenter of Coronavirus disease 2019 (COVID-19) pandemic. The underrepresented minorities, where the prevalence of obesity is higher, appear to be affected disproportionally. Our objectives were to assess the characteristics and early outcomes of patients hospitalized with COVID-19 in the Bronx and investigate whether obesity is associated with worse outcomes.MethodsThis retrospective study included the first 200 patients admitted to a tertiary medical center with COVID-19. The electronic medical records were reviewed at least three weeks after admission. The primary endpoint was in-hospital mortality.Results200 patients were included (female sex: 102, African American: 102). The median BMI was 30 kg/m2. The median age was 64 years. Hypertension (76%), hyperlipemia (46.2%), and diabetes (39.5%) were the three most common comorbidities. Fever (86%), cough (76.5%), and dyspnea (68%) were the three most common symptoms. 24% died during hospitalization (BMI <25 kg/m2: 31.6%, BMI 25-34 kg/m2: 17.2%, BMI≥35 kg/m2: 34.8%, p= 0.03). The multivariate analysis for mortality, demonstrates that BMI≥35 kg/m2 (OR: 3.78; 95% CI: 1.45 - 9.83; p=0.006), male sex (OR: 2.74; 95% CI: 1.25 - 5.98; p=0.011) and increasing age (OR: 1.73; 95% CI: 1.13 - 2.63; p=0.011) were independently associated with higher in hospital mortality. Similar results were obtained for the outcomes of increasing oxygen requirement and intubation.ConclusionsIn this cohort of hospitalized patients with COVID-19 in a minority-predominant population, severe obesity, increasing age, and male sex were associated with higher in-hospital mortality and in general worse in-hospital outcomes.

Download Full-text

Medical Device Integration of Neurodiagnostic Equipment with Hospital Electronic Medical Records/Hospital Information Systems at UMass Memorial Medical Center

Journal of Clinical Engineering ◽

10.1097/jce.0b013e318230ac91 ◽

2011 ◽

Vol 36 (4) ◽

pp. 157-165 ◽

Cited By ~ 1

Author(s):

Pratyusha Mattegunta

Keyword(s):

Information Systems ◽

Medical Device ◽

Electronic Medical Records ◽

Medical Records ◽

Medical Center ◽

Hospital Information Systems ◽

Device Integration

Download Full-text

Safeguarding the Privacy of Electronic Medical Records

Cyber Crime ◽

10.4018/978-1-61350-323-2.ch412 ◽

2013 ◽

pp. 891-901

Author(s):

Jingquan Li ◽

Michael J. Shaw

Keyword(s):

Electronic Medical Records ◽

Medical Records ◽

Cancer Center ◽

Patient Privacy ◽

Healthcare Organizations ◽

University Of Texas ◽

The University ◽

The Impact

The continued growth of healthcare information systems (HCIS) promises to improve quality of care, reduce harmful medical errors, and streamline the entire healthcare system. But the resulting dependence on electronic medical records (EMRs) has kindled patient concern about who has access to sensitive medical records. Healthcare organizations are obliged to protect patient medical records under the Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the economic stimulus bill of 2009. The purpose of this study is to develop a formal privacy policy for safeguarding the privacy of EMRs. This study describes the impact of EMRs and HIPAA on patient privacy. It proposes access control and audit logs policies to protect patient privacy. To illustrate the best practices in the healthcare industry, this chapter presents the case of the University of Texas M. D. Anderson Cancer Center. The case demonstrates that it is critical for a healthcare organization to have a formal privacy policy in place.

Download Full-text