Prevalence of sharing access credentials in electronic medical records

Ayal Hassidim, Tzfania Korach, Rony Shreberk-Hassidim, Elena Thomaidou, Florina Uzefovsky, Shahar Ayal, Dan Ariely

Research output: Contribution to journalArticlepeer-review

10 Scopus citations

Abstract

Objectives: Confidentiality of health information is an important aspect of the physician patient relationship. The use of digital medical records has made data much more accessible. To prevent data leakage, many countries have created regulations regarding medical data accessibility. These regulations require a unique user ID for each medical staff member, and this must be protected by a password, which should be kept undisclosed by all means. Methods: We performed a four-question Google Forms-based survey of medical staff. In the survey, each participant was asked if he/she ever obtained the password of another medical staff member. Then, we asked how many times such an episode occurred and the reason for it. Results: A total of 299 surveys were gathered. The responses showed that 220 (73.6%) participants reported that they had obtained the password of another medical staff member. Only 171 (57.2%) estimated how many time it happened, with an average estimation of 4.75 episodes. All the residents that took part in the study (45, 15%) had obtained the password of another medical staff member, while only 57.5% (38/66) of the nurses reported this. Conclusions: The use of unique user IDs and passwords to defend the privacy of medical data is a common requirement in medical organizations. Unfortunately, the use of passwords is doomed because medical staff members share their passwords with one another. Strict regulations requiring each staff member to have it’s a unique user ID might lead to password sharing and to a decrease in data safety.

Original languageEnglish
Pages (from-to)176-182
Number of pages7
JournalHealthcare Informatics Research
Volume23
Issue number3
DOIs
StatePublished - 1 Jan 2017

Keywords

  • Confidentiality
  • Electronic medical records
  • Health insurance portability and accountability act
  • Medical legislation
  • Personal health records

ASJC Scopus subject areas

  • Biomedical Engineering
  • Health Informatics
  • Health Information Management

Fingerprint

Dive into the research topics of 'Prevalence of sharing access credentials in electronic medical records'. Together they form a unique fingerprint.

Cite this