Lesson 14: Ethics, Privacy, and Security

Question 1

users of most clinical systems must be

Answer 1

health professionals


Question 2

application of principles of ethics to the domain of health informatics

Answer 2

Health Information ethics

Question 3

three aspects of informatics

Answer 3

Healthcare, informatics, software


Question 4

are developed in order to assist in the dispensation of health care of processing data

Answer 4

Information system


Question 5

stored for future use, to be retrieved when needed

Answer 5

Voluminous patient information


Question 6

must maintain respect for for patient autonomy, and quality of patient records

Answer 6

Electronic health record


Question 7

use of stored data in the EHR

Answer 7

Beneficence


Question 8

______ and _______ improves document quality

Answer 8

Limiting patient access ; control over patient record

Question 9

use of stored data in the EHR

Answer 9

Beneficence


Question 10

data protection

Answer 10

non-maleficence


Question 11

involves ethical behavior required to anyone handling data and information, prescribed by International Medical Informatics Association

Answer 11

information ethics


Question 12

all person or groups have a fundamental right to privacy, hence control over the collection of storage, access, use, communication

Answer 12

Principle of information-privacy and disposition

Question 13

the collection of storage, use, access, communication, manipulation, linkage, and disposition of personal data must be disclosed in an appropriate and timely fashion to the subject

Answer 13

principles to openness


Question 14

legitimately collected about persons or groups of persons should be protected by all reasonable and appropriate measures against loss degradation, unauthorized destruction, access, use, manipulation, linkage, modification, or communication

Answer 14

principle to security


Question 15

EHR have the right of access to those records and the right to correct them with respect to its accurateness, completeness, and relevance

Answer 15

principle of access


Question 16

fundamental right of privacy and of control over the collection, storage, access, use, manipulation, linkage, communication of personal data

Answer 16

principles of legitimate infringement


Question 17

any infringement of the privacy rights of a person and of their right of control over data about them, may only occur in the least intrusive fashion with a minimum of interference with the rights of the affected parties

Answer 17

Principle of the least intrusive alternative


Question 18

any infringement of any rights to control over data about them, must be justified to the latter in good time and in an appropriate fashion

Answer 18

principle of accountability


Question 19

ethical duties and responsibilities to the following stakeholders

Answer 19

software developer


Question 20

developers should be mindful of social impacts of software system

Answer 20

society


Question 21

while balancing their duties to the public, including being straightforward about personal limitations and qualification

Answer 21

institutions and its employees


Question 22

applies to individuals and their aversion to eavesdropping, whereas confidentiality is more closely related to unintended disclosure of information.

Answer 22

Privacy


Question 23

someone breaks into the clinic to view an individual’s patient record, that perpetrator is in violation

Answer 23

confidentiality


Question 24

essential in establishing a successful physician-patient or nurse-patient relationship

Answer 24

trust


Question 25

implemented by the management as organization-wide policies and procedures

Answer 25

administrative


Question 26

mechanisms to protect equipment’s, systems, locations

Answer 26

physical


Question 27

processes to protect software and database access and control

Answer 27

technical


Question 28

if it is not cost effective for your practice to avail of an expensive technology to mitigate a risk to electronic health record

Answer 28

cost-benefit principle

Question 29

continual risk assessment of your health IT environment

continual assessment of the effectiveness of safeguards for electronic health information

Employee training on the use of health IT to appropriately protect electronic health information

appropriately reporting security breaches and ensuring continued health IT operation

Answer 29

Administrative safeguards

Question 30

office alarm system

locked offices containing computing equipment that store electronic health information

security guards

Answer 30

Physical safeguard

Question 31

securely configured computing equipment

certified applications and technologies that store or exchange electronic health information

access controls to health IT and electronic health information

encryption of electronic health information

auditing of health IT operation

Answer 31

Technical safeguard

Question 32

emphasizes that technological security tools are essential component of modern distributed health care information system

Answer 32

National research council (1997)

Question 33

ensuring that accurate and up-to-date information is available when needed at appropriate places

Answer 33

availability


Question 34

helping to ensure that healthcare providers are responsible for their access to and use of information

Answer 34

accountability


Question 35

knowing and controlling the boundaries of trusted access to the information system, both physically and logically

Answer 35

Perimeter identification


Question 36

enabling access for health care providers only to information essential to the performance of their jobs

Answer 36

controlling access


Question 37

ensuring that record owners, data stewards, and patient understand and have effective control over

Answer 37

comprehensibility and control

Question 38

patient record must be created in the LIS before tests can be ordered

Answer 38

register patient


Question 39

patient to be drawn as part of the laboratory’s morning blood collection rounds

Answer 39

order test


Question 40

nurse to collect samples

Answer 40

collect sample


Question 41

samples arrive in the laboratory

Answer 41

receive sample


Question 42

sample is loaded in a analyzer and bar code is read

Answer 42

run sample

Question 43

analyzer produces the results and sends them to LIS

Answer 43

review results

Question 44

technologist release the result

Answer 44

release results


Question 45

physician can view the results on CIS screen

Answer 45

report result