European hospitals' transition toward fully electronic-based systems: do information technology security and privacy practices follow?

Téléchargements

Téléchargements par mois depuis la dernière année

Uwizeyemungu, Sylvestre, Poba-Nzaou, Placide et Cantinotti, Michael (2019). European hospitals' transition toward fully electronic-based systems: do information technology security and privacy practices follow? JMIR medical informatics., 7 (1). ISSN 2291-9694 DOI 10.2196/11211

[thumbnail of UWIZEYEMUNGU_S_82_ED.pdf]
Prévisualisation
PDF
Télécharger (316kB) | Prévisualisation

Résumé

Background: Traditionally, health information has been mainly kept in paper-based records. This has deeply changed throughout approximately the last three decades with the widespread use of multiple health information technologies. The digitization of health care systems contributes to improving health care delivery. However, it also exposes health records to security and privacy breaches inherently related to information technology (IT). Thus, health care organizations willing to leverage IT for improved health care delivery need to put in place IT security and privacy measures consistent with their use of IT resources. Objective: In this study, 2 main objectives are pursued: (1) to assess the state of the implementation of IT security and privacy practices in European hospitals and (2) to assess to what extent these hospitals enhance their IT security and privacy practices as they move from paper-based systems toward fully electronic-based systems. Methods: Drawing on data from the European Commission electronic health survey, we performed a cluster analysis based on IT security and privacy practices implemented in 1723 European hospitals. We also developed an IT security index, a compounded measure of implemented IT security and privacy practices, and compared it with the hospitals' level in their transition from a paper-based system toward a fully electronic-based system. Results: A total of 3 clearly distinct patterns of health IT-related security and privacy practices were unveiled. These patterns, as well as the IT security index, indicate that most of the sampled hospitals (70.2%) failed to implement basic security and privacy measures consistent with their digitization level. Conclusions: Even though, on average, the most electronically advanced hospitals display a higher IT security index than hospitals where the paper system still dominates, surprisingly, it appears that the enhancement of IT security and privacy practices as the health information digitization advances in European hospitals is neither systematic nor strong enough regarding the IT-security requirements. This study will contribute to raising awareness among hospitals' managers as to the importance of enhancing their IT security and privacy measures so that they can keep up with the security threats inherently related to the digitization of health care organizations. © 2019 Journal of Medical Internet Research. All rights reserved.

Type de document: Article
Mots-clés libres: data security electronic health records health information technology health services patient data privacy article awareness cluster analysis computer security drawing electronic health record health care delivery health care organization health survey human human experiment information technology INRPME manager medical information multicenter study patient coding privacy
Date de dépôt: 21 févr. 2020 17:00
Dernière modification: 26 mars 2020 14:03
Version du document déposé: Version officielle de l'éditeur
URI: https://depot-e.uqtr.ca/id/eprint/9119

Actions (administrateurs uniquement)

Éditer la notice Éditer la notice