130 likes | 243 Views
Protecting Patient Data in an Online World. Presenter: William Durnford Business Analyst, Team Bp. Standards & Guidelines. RACGP - Computer and information security standards
E N D
Protecting Patient Data in an Online World Presenter: William Durnford Business Analyst, Team Bp
Standards & Guidelines • RACGP - Computer and information security standards • “The second edition of the RACGP Computer and information security standards (CISS) provides general practices with information and recommendations that will raise awareness of contemporary security issues and help protect against potential exposure to loss of sensitive data.” • Australian Privacy Principles • Australian Privacy Principles will replace the National Privacy Principles and Information Privacy Principles from March 12 2014. The new laws apply to all businesses that turn over more than $3m a year and collect personal data. Bp Sunshine Summit 2014
Computer and Information Standards • Roles and Responsibilities • Risk Assessment • Information Security policies and procedures • Managing Access • Business Continuity and Information recovery • Internet and Email Usage • Information Backup • Computer Malware and Viruses • Computer Network Perimeter Controls • Mobiles Electronic Devices • Physical facilities and Computer Hardware / Software and Operating System • Security for information sharing Bp Sunshine Summit 2014
Australian Privacy Principles • APP 1 - Open and transparent management of personal information • APP 6 - Use or disclosure of personal information • APP 8 - Cross-border disclosure of personal information • APP 11 - Security of personal information Bp Sunshine Summit 2014
RACGP Standard 4: Managing Access • Access Rights • Password Maintenance • Password Management • Remote Access • Default User Accounts • Auditing • Initial Definition and Permission Management Bp Sunshine Summit 2014
RACGP Standard 7: Information Backup • Backup Frequency • Backup Type • Backup Encryption • Backup Reliability • Backup Restoration • Backup Media • Media Rotation • Backup Storage • Backup Access • Legacy Systems data Storage Bp Sunshine Summit 2014
RACGP Standard 8: Malware, Viruses and Email Threats • Software (Antivirus/ Anti Malware) • Updates • Scanning • Education Bp Sunshine Summit 2014
RACGP Standard 9: Computer Network Perimeter Controls • Firewall • Configuration • Monitoring • Auditing • Intrusion Detection System • Configuration • Monitoring • Auditing • DMZ (If any web services) • Remote Access • Content Filtering • Wireless Networks • Encryption • Configuration Bp Sunshine Summit 2014
RACGP Standard 10: Mobile Electronic Devices • Data Transfer Only Devices • Practice and Personally owned Mobile Devices Bp Sunshine Summit 2014
RACGP Standard 11: Physical Facilities and Computer Hardware, Software & OS • Physical Protection • UPS ( Battery Backup) • Secure Disposal • Confidentiality • System Maintenance • Software Maintenance Bp Sunshine Summit 2014
RACGP Standard 12: Security for information Sharing • Secure Messaging • Healthcare Identifiers • Practice Website Safety and Security Bp Sunshine Summit 2014
This session’s over. (But we’re still here for you) For assistance, please visit www.bpsoftware.com.au You can contact our Customer Support Team on: (07) 4155 8800 (07) 4153 2093 support@bpsoftware.com.au Bp Sunshine Summit 2014