Presentation is loading. Please wait.

Presentation is loading. Please wait.

FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support.

Published byHugo Norman Modified over 8 years ago

Similar presentations

Presentation on theme: "FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support."— Presentation transcript:

1 FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support

2 Agenda  Roll-call  General Updates  Access Audit Model  Round table discussion FNHSO P&S Framework Forum

3 Roll Call  Kwakiutl District Council Health Services  Seabird Island Band's Health Services Department  Three Corners Health Services Society  Tla’amin Community Health Services  Westbank First Nation Health and Wellness  Saulteau First Nation Health Services  Nuu-chah-nulth Tribal Council – Community and Human Services  Okanagan Indian Band Health Services  Cowichan Tribes - Ts’ewulhtun Health Services  Scw’exmx Community Health Service Society  Inter Tribal Health Authority  Pauquachin Health Centre  Nazko Health  Simpcw First Nation  Nak’azdli Health Centre  Ktunaxa Nation Council – Health Services  Splatsin Health Services  Sto:lo Service Agency Health FNHSO P&S Framework Forum

4 Context: Panorama Access Audit Program Objectives  Establish a robust access audit program that complies with the Panorama Access Audit requirements and includes the data in Panorama that is included in their local systems (e.g. Mustimuhw)  Identify best practices for conducting user access audits in local systems (e.g. Mustimuhw)  Address the different service models:  Nurse works on their own or in a small community setting  Nurse works as part of a medium to large health program delivery team  Multiple sites within FNHSO  Define roles, responsibilities, processes, timelines, including escalation and disciplinary processes  Build capacity to support sustainability 4 FNHSO P&S Framework Forum

5 5 Staged Approach to Establish Access Audit Program Period 1 Validate & Refine Stage 1: Initial Audit Process Stage 0: Define Audit Program: Stages, RnR, etc. Validate & Refine Stage 2: Data Quality Audits Period 2Period 3 Validate & Refine Stage 3: Pattern-based Audits Validate & Refine Stage 4: Comprehensive Audit Program Period 4 5 FNHSO P&S Framework Forum

6 6 Period 1 2. Define Procedures / Forms Stage 1Activities 1. Define Stage Objectives & Process 3. Validate Process / Procedures Period 2Period 3 4. Refine Policy / Process / Procedures Based on Lessons Learned 5. Refine Approach For Remaining Stages Based on Lessons Learned Period 4 6 Period 5 FNHSO P&S Framework Forum

7 Define Stage 1 Objectives √ Objectives established :  Develop capacity to:  Respond to user access complaints (reactive audit)  Inactivate user accounts that are not being used  Identify users that have accessed their own record or records of a family member with the same last name when not providing services  Monitor access to special clients 7 FNHSO P&S Framework Forum

8 8 Define Stage 1 Process Flow 8  Process defined √Respond to access complaints (reactive audit) √Inactivate user accounts that are not being used √Identify users that have accessed their own record or records of a family member with the same last name when not providing services  Process topics for today:  Monitor access to special clients FNHSO P&S Framework Forum

9  We are looking for an approach to fulfill proactive audit requirements in a sustainable manner  Panorama is used for Immunizations and TB as of March 14. STI/HIV access planned for this summer (date TBC)  Number of users with access to Panorama varies by FNHSO; typically FNHSO has more Mustimuhw users than Panorama users  In Panorama, every user has access to all clients in the system to support the client’s ability to receive service at any health centre in either BC or Yukon  In Mustimuhw, users can be restricted to only those clients that the user provides care; however in some FNHSOs nurses and clerical staff have access to all clients FNHSO P&S Framework Forum Context: Proactive Auditing

10  Based on the discussion in the meeting, it was decided to take a different approach to address the proactive auditing requirements  Approach:  Health Director/Data Steward/Privacy Officer in consultation with Panorama/Mustimuhw champions & Nursing Manager/Supervisor collaboratively decide the approach for proactive audits that best suits their organization, size of user community, and audit capacity  Proactive audits would be based on one or more of the following:  Audit specific users to ensure they were accessing the system appropriately  Audit specific clients to ensure that access to these clients was appropriate  Audit groups of users to ensure they were accessing the system appropriately(e.g. 25% of users every quarter) FNHSO P&S Framework Forum Proactive Audit Recommendation

11 Proactive Audit Process  Investigation Process:  Execute Panorama report showing user activity against a specific client, or specific clients a user accessed  Review access to identify possible inappropriate activity  If warranted, review activity with user, user’s manager/supervisor  If access is confirmed to be inappropriate, determine disciplinary actions (e.g. Privacy refresher, review the Confidentiality and Acceptable Use Agreement)  If warranted Initiate Breach Management process or complete disciplinary actions FNHSO P&S Framework Forum

12 12 Period 1 2. Define Procedures / Forms Define Stage 1 Procedures & Forms 1. Define Stage Objectives & Process 3. Validate Process / Procedures Period 2Period 3 4. Refine Policy / Process / Procedures Based on Lessons Learned 5. Refine Approach For Remaining Stages Based on Lessons Learned Period 4 12 Period 5 FNHSO P&S Framework Forum

13 What Forms are Required? Stage 1 AuditsForms (others)?Comments 1.Respond to access complaints (reactive audit) Complaint formLeverage Info Request form – Mildred may have a form we can leverage as well Manager review formProvides steps to address both appropriate and inappropriate access Complainant Response Letter Identifies outcome of the review and appeal process Complaint Tracking requirements Identifies the logging requirements, supporting materials that are kept in a restricted area, etc. ReportingIncludes requirements for: FNHSO Annual Reporting OIPC Reporting FNHSO P&S Framework Forum

14 Roundtable Review  Any changes to Panorama users (add/remove) ?  Questions or concerns?  Agenda items for next meeting?  Deferred to a later meeting: Mildred: are you available to provide a review of Mustimuhw access audit process? FNHSO P&S Framework Forum

Download ppt "FNHSO Privacy and Security Framework Forum Mar 15, 2016 BC First Nations Panorama Support."

Similar presentations

The Risk Management Process (AS/NZS 4360, Chapter 3)

The Risk Management Process (AS/NZS 4360, Chapter 3)
School Community Councils Tuesday, March 23, 2010.

School Community Councils Tuesday, March 23, 2010.
© Grant Thornton UK LLP. All rights reserved. Review of Partnership Working: Follow Up Review Vale of Glamorgan Council Final Report- November 2009.

© Grant Thornton UK LLP. All rights reserved. Review of Partnership Working: Follow Up Review Vale of Glamorgan Council Final Report- November 2009.
Auditing, Assurance and Governance in Local Government

Auditing, Assurance and Governance in Local Government
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
Confidentiality and HIPAA

Confidentiality and HIPAA
Quality Improvement/ Quality Assurance Amelia Broussard, PhD, RN, MPH Christopher Gibbs, JD, MPH.

Quality Improvement/ Quality Assurance Amelia Broussard, PhD, RN, MPH Christopher Gibbs, JD, MPH.
Knowledge Translation Curriculum Module 3: Priority Setting Lesson 2 - Interpretive Priority Setting Processes.

Knowledge Translation Curriculum Module 3: Priority Setting Lesson 2 - Interpretive Priority Setting Processes.
Supportive Services for Veteran Families (SSVF) Data Bigger Picture Updated 5/22/14.

Supportive Services for Veteran Families (SSVF) Data Bigger Picture Updated 5/22/14.
© Grant Thornton UK LLP. All rights reserved. Review of Sickness Absence Vale of Glamorgan Council Final Report- November 2009.

© Grant Thornton UK LLP. All rights reserved. Review of Sickness Absence Vale of Glamorgan Council Final Report- November 2009.
Children’s Social Care Workload Management System (WMS) A Two-fold approach DSLT 16 th November 2010 Updated with new SWRB standards.

Children’s Social Care Workload Management System (WMS) A Two-fold approach DSLT 16 th November 2010 Updated with new SWRB standards.
Introduction & Background Laurene Christensen National Center on Educational Outcomes National Center on Educational Outcomes (NCEO)

Introduction & Background Laurene Christensen National Center on Educational Outcomes National Center on Educational Outcomes (NCEO)
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
Development of a Customized First Nations Privacy & Security Toolkit

Development of a Customized First Nations Privacy & Security Toolkit
Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,

Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,
Chapter 7 Database Auditing Models

Chapter 7 Database Auditing Models
CSP Annual Security Training Miranda Gregory, CSP Analyst Carroll County Department of Citizen Services.

CSP Annual Security Training Miranda Gregory, CSP Analyst Carroll County Department of Citizen Services.
Unit 054-Duty of Care. Definition of Duty of Care  What does Duty of Care mean to you? * discuss in groups and come up with a definition (1.1)  Definition.

Unit 054-Duty of Care. Definition of Duty of Care  What does Duty of Care mean to you? * discuss in groups and come up with a definition (1.1)  Definition.
DSDS Quality Assurance Unit State of Alaska, Dept. of Health and Social Services Division of Senior and Disabilities Services (DSDS) Quality Assurance.

DSDS Quality Assurance Unit State of Alaska, Dept. of Health and Social Services Division of Senior and Disabilities Services (DSDS) Quality Assurance.
The Audit Process Tahera Chaudry March 2009. Clinical audit A quality improvement process that seeks to improve patient care and outcomes through systematic.

The Audit Process Tahera Chaudry March Clinical audit A quality improvement process that seeks to improve patient care and outcomes through systematic.

Similar presentations

Ads by Google