Ä¢¹½´«Ã½

Country Websites

The Pivotal Role of Data Privacy in Healthcare: A Q&A with our FMCNA Data Privacy Team

The Pivotal Role of Data Privacy in Healthcare: A Q&A with our FMCNA Data Privacy Team

Ìý
The COVID-19Ìýpandemic led to theÌýurgentÌýneed forÌýimprovedÌýtelehealth platforms for our patients and physicians,Ìýas well as theÌýneedÌýto shift an in-officeÌýworkforce ofÌý25,000ÌýtoÌýhome.ÌýIn this Q&A with our Data Privacy Team, we discussÌýhowÌýaÌýstrong, collaborativeÌýdataÌýsecurity andÌýprivacyÌýprogramÌýplayed a critical role in allowing us to safely and securely continue operations and provide life-sustaining dialysis to our patients during the pandemic.Ìý

Q:ÌýAt the onset of the COVID-19Ìýpandemic, why was data privacy and security such a priority?

A:ÌýWhen we learned about COVID-19, we quickly identified the need to safely and securely maintain communication with patients and employees in a remote setting, where it was no longer sufficient to secure users behind a corporate firewall. In addition, we knew that as a healthcare company, we were at a greater risk of cyberattacks. As we adopted a telehealth platform and transitioned thousands of in-office employees to work from home, we remained vigilant about security practices and ensured data privacy remained paramount.

Q:ÌýHow did data privacy and security play a role in keeping patients safe?

A:ÌýAt the onset of COVID-19,Ìýit was evident thatÌýhealthcare technologies, such as aÌýÌýplatform, would be critical to reduce patientsÄ¢¹½´«Ã½™ exposure to the virus.

After selecting a telehealth platform, the Data Privacy TeamÌýcollaborated with the Information Technology Implementation Team to get the systemÌýonlineÌýin an astonishing four days, allowing patients to receive the care they needed from the comfort and safety of their homes.Ìý

WeÌýreviewedÌýthe platform chosenÌýto ensure itÌýfit the requirements of the federal governmentÌýandÌýwould be HIPAA compliant with end-to-endÌýencryptionÌýto make itÌýless vulnerable to cyberattacks.ÌýUsing best practices, we are able to protect and monitor the confidentiality, integrity, and availability of data and networks, ensuring that data is accurate, reliable, and available when needed for our patients and employees.

Q:ÌýAs the telehealth platform was developed, how didÌýyour team ensure that data privacy was top of mind for employees and physiciansÌýusing the new tool?

A:ÌýThanks to our foundational work on data privacy, the team had a road map for how to quickly and effectively implement training to ensure employees and physicians knew how to use the new platform in a safe manner. To keep data privacy top of mind, our team continues to provide training in a variety of ways, including for new hires and annually for all employees.

Information on data privacyÌýwasÌýalso incorporated intoÌýaÌýcentralized repository of all frequently asked questions. This provided a quick reference guide for employees and physicians, reinforcing how to safely conduct telehealth sessions.Ìý

Q: How did your team ensure data privacy remained a priority when the company transitioned in-office employees to work from home?

A:ÌýWhen there was a need to shift a large portion of our workforce to work from home, it was criticalÌýto retrain and educate employees aboutÌýdata privacy measures andÌýcybersecurity awareness.ÌýThe Data Privacy TeamÌýcollaborated with othersÌýtoÌýdeployÌývirtual workforce trainingÌýthat included reminders aboutÌývirtual private network (VPN)Ìýsafeguards,Ìýprotected health information (PHI),ÌýandÌýpassword protections.ÌýWe also reeducated employees aboutÌýspotting different cybersecurity attacksÌýand how to handleÌýthem.Ìý

Additionally,ÌýweÌýcreated aÌýPrivacy ChampionÌýProgramÌý(PCP)ÌýtoÌýestablish experts at the business unit level who understand the privacy and security risks associated with the business-specific processes.

Q: Can you share more about how the PCP helps promote awareness of and adherence to data privacy and security within the organization?

A:ÌýTheÌýPCPÌýallowsÌýthe representative from each business unit to alignÌýwithÌýtheÌýInformation Security Office (ISO)Ìýon strategies and activities involving data privacy, as well as provide insight forÌýtheÌýISO into business needs and initiatives. The program has allowedÌýusÌýto increase awareness about privacy by requesting or conducting training,Ìýidentifying areas of opportunity, and providing feedback on planned training programs.ÌýÌý

In addition, each team member of the Data Privacy TeamÌýhas been assigned to a business unit, ensuring data privacy is present in everything we do throughout the organization.Ìý

Insights You Might Like

Ìý

ARTICLE

Katya Cook Fosters Professional Growth for FMCNA Emplyees

Ìý

ARTICLE

Benifits of Replacing Your Old Central DIalysis Water System

Ìý

ARTICLE

What Is the AquA RO System? | Dialysis Water Treatment