Canadian Healthcare Technology Logo
  • Issues
    • Current Print Issue
    • Print Archive
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Events
  • Vendors
  • About Us

GE [April2023]

GE [April2023]

Enovacom EPC

Enovacom EPC

Privacy & Security

Eastern Health ordered to tighten security procedures

November 16, 2016


donovan-molloy

ST. JOHN’S, NL – Newfoundland and Labrador’s privacy commissioner is ordering Eastern Health to remind staff to log out of computers once they’re done, after investigating a breach of patient information at the health authority.

Information and Privacy Commissioner Donovan Molloy’s report describes the May 28, 2015 incident as an “intentional breach of patient information.”

The report says an unknown person inappropriately accessed and printed personal health information from the account of a doctor who didn’t log out of the Meditech patient information software.

While a number of patients were involved, Commissioner Molloy (pictured) only looked into two specific complaints.

According to CBC News, the information consisted of patient names, MCP numbers, gender, age, hospital admission date, attending physician and reason for visit.

That information was then anonymously sent to the Department of Health and the College of Physicians and Surgeons. The investigation could not determine who committed the breach, so no charges were laid.

“Despite the thorough investigation undertaken – which included attempted fingerprint/DNA analysis of the envelopes sent to the department and the college – Eastern Health was unable to confirm, with the necessary degree of certainty, the identity of the person responsible for the intentional inappropriate access,” the report read.

‘No other avenues of investigation offered any prospect of proving the identity of the offender.’– Commissioner Donovan Molloy.

The report went on to say the physician whose account was accessed was on rounds in another part of the hospital when the records in question were printed and could not have printed them.

It said the doctor maintained he didn’t give his user name and password to anyone, but it appears he did fail to log out of the Meditech system after completing a clinic earlier in the day. The files were later printed at that location from the open account.

The hospital or health centre where it happened was not named in the report.

A release said the breach was outside the health authority’s control and “perpetrated by someone who chose to ignore clear rules and policies regarding the protection of personal health information.”

“This person was able to inappropriately access the information through the account of another doctor when he inadvertently failed to log out of his computer session, contrary to Eastern Health policy,” it read.

Molloy has ordered Eastern Health to look into “automatic log-out times” on its systems and to “remind employees of the importance of logging out of computer sessions and of the consequences for failing to do so.”

He also asked the health authority to look into the feasibility of installing proximity card readers.

They can automatically log in staff when they get close enough to a computer, but log them out when they move outside that area.

PreviousNext

CHT print [900×150]

CHT print [900x150]

News and Trends

  • Ottawa’s health information demands will benefit patients
  • AI-powered tool on St. Michael’s surgical unit helps to improve care
  • Bots to help doctors reduce time spent on electronic records
  • Bissell Centre uses analytics to better understand client data
  • Canadian team is making ultrasound easier to use
More from the Print Edition

Subscribe

Subscribe

Free of charge to Canadian hospital managers and executives in nursing homes and home-care organizations. Learn More

Follow us on Social Media!

Follow us on Social Media!

Softworks

Softworks

Cdn Institute HCIwest

Cdn Institute HCIwest

Nihi Spring 2023

Nihi Spring 2023

Advertise with us

Advertise with us

Sectra [Feb]

Sectra [Feb]

Change Healthcare [2]

Change Healthcare [2]

Infoway [April2023]

Infoway [April2023]

Zebra [Mar2023]

Zebra [Mar2023]

RealTime

RealTime

CHT print [900×150]

CHT print [900x150]

Advertise with us

Advertise with us

Sectra [Feb]

Sectra [Feb]

Change Healthcare [2]

Change Healthcare [2]

Infoway [April2023]

Infoway [April2023]

Zebra [Mar2023]

Zebra [Mar2023]

RealTime

RealTime

Contact Us

Canadian Healthcare Technology
1118 Centre Street, Suite 207
Thornhill, Ontario, Canada L4J 7R9
Tel: 905-709-2330
Fax: 905-709-2258
info2@canhealth.com

  • Quick Links
    • Current Print Issue
    • Print Archive
    • Events
    • Vendors
    • About Us
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Resources
    • White Papers
    • Writers’ Guidelines
    • Privacy Policy
  • Topics
    • Administrative Solutions
    • Clinical Solutions
    • Companies
    • Continuing Care
    • Diagnostics
    • Education & Training
  •  
    • Electronic Records
    • Government & Policy
    • Infrastructure
    • Innovation
    • People
    • Privacy and Security

© 2023 Canadian Healthcare Technology

The content of Canadian Healthcare Technology is subject to copyright. Reproduction in whole or in part without prior written permission is strictly prohibited. Send all requests for permission to Jerry Zeidenberg, Publisher.

Search Site

Error: Enter a search term

  • Issues
    • Current Print Issue
    • Print Archive
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Events
  • Vendors
  • About Us