FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support.

Slides:



Advertisements
Similar presentations
The Risk Management Process (AS/NZS 4360, Chapter 3)
Advertisements

School Community Councils Tuesday, March 23, 2010.
© Grant Thornton UK LLP. All rights reserved. Review of Partnership Working: Follow Up Review Vale of Glamorgan Council Final Report- November 2009.
Auditing, Assurance and Governance in Local Government
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
Confidentiality and HIPAA
Quality Improvement/ Quality Assurance Amelia Broussard, PhD, RN, MPH Christopher Gibbs, JD, MPH.
Knowledge Translation Curriculum Module 3: Priority Setting Lesson 2 - Interpretive Priority Setting Processes.
Supportive Services for Veteran Families (SSVF) Data Bigger Picture Updated 5/22/14.
© Grant Thornton UK LLP. All rights reserved. Review of Sickness Absence Vale of Glamorgan Council Final Report- November 2009.
Children’s Social Care Workload Management System (WMS) A Two-fold approach DSLT 16 th November 2010 Updated with new SWRB standards.
Introduction & Background Laurene Christensen National Center on Educational Outcomes National Center on Educational Outcomes (NCEO)
Office of Inspector General (OIG) Internal Audit
Development of a Customized First Nations Privacy & Security Toolkit
Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,
Chapter 7 Database Auditing Models
CSP Annual Security Training Miranda Gregory, CSP Analyst Carroll County Department of Citizen Services.
Unit 054-Duty of Care. Definition of Duty of Care  What does Duty of Care mean to you? * discuss in groups and come up with a definition (1.1)  Definition.
DSDS Quality Assurance Unit State of Alaska, Dept. of Health and Social Services Division of Senior and Disabilities Services (DSDS) Quality Assurance.
The Audit Process Tahera Chaudry March Clinical audit A quality improvement process that seeks to improve patient care and outcomes through systematic.
How the Third Sector and Public Sector can do Business Susan Street, Adult Care Services, HCC Frances Coupe, Children, Schools & Families,
Documenting the Participation of Fishing Vessel Crew Members in Alaska’s Commercial Fisheries Documenting the Participation of Fishing Vessel Crew Members.
Productive SB 18 Consultation Michelle LaPena, Esq. LaPena Law Corporation 2001 N Street, Suite 100 Sacramento, CA (916)
Management Responsibilities. Building a Culture of Safety.
Code of Conduct Complaints Local Assessment Framework (08 May 2008 – 30 June 2009)
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 7 Database Auditing Models.
HFTC Collaborative Council Strategic Plan Update.
Joint Reviews of Local Authority Social Services JOINT REVIEW OF SALFORD COUNCIL 17 th June 2003.
DOI Complaint Response Timeline Claims Services 2015 This timeline is applicable to DOI Inquiries/Complaints for all states where we do business. The dates.
Rebecca Ramirez, J.D., M.H.A. Associate Director for Operations October 10, 2009.
The Impact of Evolving IT Security Concerns On Cornell Information Technology Policy.
Health Quality Ontario: Health System Performance New Zealand Master Class March 25, 2014.
1 Illinois Department of Human Services Division of Mental Health Presents March 11,2008 Illinois Mental Health Collaborative for Access and Choice and.
1 THE NURSING BILL BRIEFING BY THE NATIONAL DEPARTMENT OF HEALTH CAPE TOWN 15 NOVEMBER 2005.
FORUM GUIDE TO SUPPORTING DATA ACCESS FOR RESEARCHERS A STATE EDUCATION AGENCY PERSPECTIVE Kathy Gosa, Kansas State Department of Education.
October 9 th, 2015 University of Pennsylvania TIES Cancer Research Network Y3 Face to Face Meeting U24 CA Session 5 Regulatory Update.
State of Georgia Release Management Training
Surgeon Champion Who’s that? What’s the role? June 2012.
CARIS Community and Residential Information System IISC Project # A18 Ministry of Children and Family Development 2005.
1 Home Care Support Outcome Based Specification Workshop 26 th November 2009.
FNHSO PANORAMA DATA GOVERNANCE FORUM Kick-off Meeting July 8, 2014.
FNHSO Privacy and Security Framework Forum Feb 16, 2016 BC First Nations Panorama Support.
Quality Assurance Lincolnshire County Council Provider Forum Handout 2010.
FNHSO PANORAMA DATA GOVERNANCE FORUM Regular Forum Meeting April 12, 2016.
Professional Services for.  Desire to evaluate policies, procedures, and practices of LCPD  Hired Justice and Security Strategies (JSS) to: 1.Evaluate.
FNHSO Privacy and Security Framework Forum Nov 19, 2014 BC First Nations Panorama Support.
Bylaw Enforcement: Best Practices Guide for Local Governments Presentation to Southern Interior Local Government Association Conference, Kelowna, BC April.
Public sector whistleblowing: Ombudsman Victoria’s experience 10 June 2010 Glenn Sullivan, Director Ombudsman Victoria.
FNHSO Privacy and Security Framework Forum Jan 19, 2016 BC First Nations Panorama Support.
FNHSO Privacy and Security Framework Forum June 16, 2015 BC First Nations Panorama Support.
FNHSO PANORAMA DATA GOVERNANCE FORUM Regular Forum Meeting December 8, 2015.
FNHSO Privacy and Security Framework Forum October 15, 2014 BC First Nations Panorama Support.
FNHSO PANORAMA DATA GOVERNANCE FORUM Regular Forum Meeting March 8, 2016.
Safeguarding Link Governors Forum
FNHSO Panorama Data Governance Forum
FNHSO Privacy and Security Framework Forum Jan 19, 2016
FNHSO Panorama Data Governance Forum
FNHSO Panorama Data Governance Forum
FNHSO Panorama Data Governance Forum
FNHSO Panorama Data Governance Forum
12.3 Control Procurements The process of managing procurement relationships, monitoring contract performance and making changes or corrections as needed.
FNHSO Panorama Data Governance Forum
FNHSO Privacy and Security Framework Forum Sept 20, 2016
FNHSO Panorama Data Governance Forum
FNHSO Privacy and Security Framework Forum April 16, 2014
WELSH RISK POOL Vicky Langford.
Procedural Policy August 1st, 2017
Governance Committee Update
Designated Safeguarding Leads meeting
St. George’s Home Care Requires A Full-Time Care Supervisor
Presentation transcript:

FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support

Agenda  Roll-call  General Updates  Access Audit Model  Round table discussion FNHSO P&S Framework Forum

Roll Call  Kwakiutl District Council Health Services  Seabird Island Band's Health Services Department  Three Corners Health Services Society  Tla’amin Community Health Services  Westbank First Nation Health and Wellness  Saulteau First Nation Health Services  Nuu-chah-nulth Tribal Council – Community and Human Services  Okanagan Indian Band Health Services  Cowichan Tribes - Ts’ewulhtun Health Services  Scw’exmx Community Health Service Society  Inter Tribal Health Authority  Pauquachin Health Centre  Nazko Health  Simpcw First Nation  Nak’azdli Health Centre  Ktunaxa Nation Council – Health Services  Splatsin Health Services  Sto:lo Service Agency Health FNHSO P&S Framework Forum

Context: Panorama Access Audit Program Objectives  Establish a robust access audit program that complies with the Panorama Access Audit requirements and includes the data in Panorama that is included in their local systems (e.g. Mustimuhw)  Identify best practices for conducting user access audits in local systems (e.g. Mustimuhw)  Address the different service models:  Nurse works on their own or in a small community setting  Nurse works as part of a medium to large health program delivery team  Multiple sites within FNHSO  Define roles, responsibilities, processes, timelines, including escalation and disciplinary processes  Build capacity to support sustainability 4 FNHSO P&S Framework Forum

5 Staged Approach to Establish Access Audit Program Period 1 Validate & Refine Stage 1: Initial Audit Process Stage 0: Define Audit Program: Stages, RnR, etc. Validate & Refine Stage 2: Data Quality Audits Period 2Period 3 Validate & Refine Stage 3: Pattern-based Audits Validate & Refine Stage 4: Comprehensive Audit Program Period 4 5 FNHSO P&S Framework Forum

6 Period 1 2. Define Procedures / Forms Stage 1Activities 1. Define Stage Objectives & Process 3. Validate Process / Procedures Period 2Period 3 4. Refine Policy / Process / Procedures Based on Lessons Learned 5. Refine Approach For Remaining Stages Based on Lessons Learned Period 4 6 Period 5 FNHSO P&S Framework Forum

Define Stage 1 Objectives √ Objectives established :  Develop capacity to:  Respond to user access complaints (reactive audit)  Inactivate user accounts that are not being used  Identify users that have accessed their own record or records of a family member with the same last name when not providing services  Monitor access to special clients 7 FNHSO P&S Framework Forum

8 Define Stage 1 Process Flow 8  Process defined √Respond to access complaints (reactive audit) √Inactivate user accounts that are not being used √Identify users that have accessed their own record or records of a family member with the same last name when not providing services  Process topics for today:  Monitor access to special clients FNHSO P&S Framework Forum

 We are looking for an approach to fulfill proactive audit requirements in a sustainable manner  Panorama is used for Immunizations and TB as of March 14. STI/HIV access planned for this summer (date TBC)  Number of users with access to Panorama varies by FNHSO; typically FNHSO has more Mustimuhw users than Panorama users  In Panorama, every user has access to all clients in the system to support the client’s ability to receive service at any health centre in either BC or Yukon  In Mustimuhw, users can be restricted to only those clients that the user provides care; however in some FNHSOs nurses and clerical staff have access to all clients FNHSO P&S Framework Forum Context: Proactive Auditing

 Based on the discussion in the meeting, it was decided to take a different approach to address the proactive auditing requirements  Approach:  Health Director/Data Steward/Privacy Officer in consultation with Panorama/Mustimuhw champions & Nursing Manager/Supervisor collaboratively decide the approach for proactive audits that best suits their organization, size of user community, and audit capacity  Proactive audits would be based on one or more of the following:  Audit specific users to ensure they were accessing the system appropriately  Audit specific clients to ensure that access to these clients was appropriate  Audit groups of users to ensure they were accessing the system appropriately(e.g. 25% of users every quarter) FNHSO P&S Framework Forum Proactive Audit Recommendation

Proactive Audit Process  Investigation Process:  Execute Panorama report showing user activity against a specific client, or specific clients a user accessed  Review access to identify possible inappropriate activity  If warranted, review activity with user, user’s manager/supervisor  If access is confirmed to be inappropriate, determine disciplinary actions (e.g. Privacy refresher, review the Confidentiality and Acceptable Use Agreement)  If warranted Initiate Breach Management process or complete disciplinary actions FNHSO P&S Framework Forum

12 Period 1 2. Define Procedures / Forms Define Stage 1 Procedures & Forms 1. Define Stage Objectives & Process 3. Validate Process / Procedures Period 2Period 3 4. Refine Policy / Process / Procedures Based on Lessons Learned 5. Refine Approach For Remaining Stages Based on Lessons Learned Period 4 12 Period 5 FNHSO P&S Framework Forum

What Forms are Required? Stage 1 AuditsForms (others)?Comments 1.Respond to access complaints (reactive audit) Complaint formLeverage Info Request form – Mildred may have a form we can leverage as well Manager review formProvides steps to address both appropriate and inappropriate access Complainant Response Letter Identifies outcome of the review and appeal process Complaint Tracking requirements Identifies the logging requirements, supporting materials that are kept in a restricted area, etc. ReportingIncludes requirements for: FNHSO Annual Reporting OIPC Reporting FNHSO P&S Framework Forum

Roundtable Review  Any changes to Panorama users (add/remove) ?  Questions or concerns?  Agenda items for next meeting?  Deferred to a later meeting: Mildred: are you available to provide a review of Mustimuhw access audit process? FNHSO P&S Framework Forum

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.