HLST 2040 Lecture Notes - Lecture 6: Data Center, Mhealth, Public Key Infrastructure

Phipa (ontario, 2004; updated in 2016: personal health information protection act, rules for collection, use and disclosure and personal health information (phi), applies to health information custodians (hics) in ontario and their agents (receive. Data protected under phipa: physical or mental health, healthcare services received or planned. Hlst 2040: payment or eligibility, donation of body parts or substances, test results, health card number, power of attorney for personal care (i. e. , substitute decision maker). Hospitals, psychologists, chiropractors, nursing homes, pharmacies, dentists: health care clearinghouses. Administrative safeguards: security management processes to reduce risks and vulnerabilities. Technical safeguards: access control that restricts access to authorized personnel, audit controls for hardware, software, and transactions, transmission security to protect against unauthorized access to data transmitted on. Integrity controls to ensure data is not altered or destroyed networks and via email: for example, strong login password, strong encryption for all transmissions.