1 / 23

NHS TAYSIDE CHI ACCESS PROTOCOL

NHS TAYSIDE CHI ACCESS PROTOCOL. 1970’s. CHI developed in Tayside to link patient records between hospitals and primary care Initially only primary care data loaded on to the system Ninewells and DRI were subsequently linked on-line via CHI/Compas interface

lyn
Download Presentation

NHS TAYSIDE CHI ACCESS PROTOCOL

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. NHS TAYSIDE CHI ACCESS PROTOCOL

  2. 1970’s • CHI developed in Tayside to link patient records between hospitals and primary care • Initially only primary care data loaded on to the system • Ninewells and DRI were subsequently linked on-line via CHI/Compas interface • Staff with no online access used microfiche

  3. 1980’s • CHI expanded to include CPC data - Child Health - Cytology • Rollout of CHI/CPC systems to all Health Boards in Scotland • Tayside/Fife/Forth Valley patient records loaded on to the same database

  4. 1997 • White Paper ‘Designed to Care’ • Need to improve transportation/communication of information relating to patients • Increased use of information technology • Need to improve patient identification • Allocate a Unique Patient Identifier for each patient i.e. CHI number • CHI number to be inserted in all patient records • Creation of UPI search index

  5. 1999 • Rollout of CHI to secondary and tertiary care across Scotland began • Matching and seeding exercises • Introduction of CHI gatekeepers • Access to CHI records for the entire population of Scotland

  6. Directors of Public Health • Raised concerns: • - access for hospital users to CHI records for entire population of Scotland and not just patients known to the hospital • Implementation of Gatekeeper Confidentiality Statement: • - signed by gatekeeper - signed off by Caldicott Guardian - raised user awareness of responsibilities

  7. 2001 • Use of CHI increased with greater demand for access • New client/PAS systems requiring links to CHI • Demands for CHI downloads to seed hospital systems

  8. National CHI Access Protocol • CHI Access Protocol Framework (Nov 2001) based on Caldicott Principles • Objectives: - define purpose for access - agree parameters - define roles and responsibilities - provide framework to ensure patient confidentiality • Regulatory Environment - statute (DPA 1998; Human Rights Act 2000) - the common law - Caldicott Principles - standards set by professional bodies - policies + organisational standards of SEHD and NHSScotland

  9. Protocol Template 9 Sections • Description of business function • Data items being accessed • Specific roles of staff • Method by which data is accessed • Monitoring of access • Legislative context • Protocol maintenance • Security • Signatories

  10. Management of CHI in Tayside • CHI more widely used in Tayside than anywhere else • Recognised requirement for control and monitoring of use of and access to CHI • Role of CHI Administrator provided some control • National protocol framework provided basis for improved management of CHI locally

  11. NHS Tayside CHI Access Protocol • Early 2002 • First draft of a protocol provided by Tayside University Hospitals NHS Trust • Reviewed and amended to cover the whole of Tayside • Process involved determining: - roles - responsibilities - lines of authority - current procedures - areas of weakness

  12. NHS Tayside CHI Access Protocol Development Process • Determine and agree: - Roles - Responsibilities - Lines of authority • Identify areas where CHI is used • Audit of CHI usage • Identify methods of access • Authorisation process • Review security procedures • Review audit and monitoring procedures • Establish monitoring tools • Implementation

  13. NHS Tayside CHI Access Protocol Development Process • 2003 • Draft protocol agreed with responsible parties • Distributed for consultation • Final document signed off by Caldicott Guardians in May 2003

  14. NHS Tayside CHI Access Protocol Implementation • A number of processes/procedures were formalised: • Audit of access - method of access * - lists of users - purge of user lists - user profiles • Request and authorisation procedures • Monitoring/Audit systems • Ensure all systems accessing CHI are covered by confidentiality statement • Training • Publicise protocol and raise awareness • Annual Review

  15. NHS Tayside CHI Access Protocol Methods of CHI Access • Direct (on-line) access to CHI/UPI • - Compas - DG-Local - CHI 24 • A-CHI • Microfiche • Other national systems include: - SCI-DC - SCI-CHD - SBR

  16. NHS Tayside CHI Access Protocol Methods of Access (cont) A-CHI – a database of demographic patient data to support the use of clinical and non-clinical systems. These systems include: - Central Vision - e-Care - ERS - HEARTS - MITER - Octagon - Taycare/NHS24

  17. NHS Tayside CHI Access Protocol Benefits • Clarity • Accountability • Consistency • Roles and responsibilities • Agreed procedures for authorisation and access • Improved user awareness of security, confidentiality and responsibilities • Improved patient confidentiality

  18. NHS Tayside CHI Access Protocol Issues • System Access Controls (‘need to know’) • Access for non-NHS staff • e-Care • Research • Impact of national developments • Local developments (SCI-Store) • Education & Training • Data Quality • Systems with no protocols in place

  19. NHS Tayside CHI Access Protocol Review Process • Annual review • Feedback from implementation group, e.g. - system implementation/removal - new procedures • Update protocol • Sign-off by Caldicott Guardians

  20. NHS Tayside CHI Access Protocol Review 2005 SUCCESSES • Rollout of CHI 24 • Withdrawal of DG-Local • CHI logging using Business Objects • Training programme

  21. NHS Tayside CHI Access Protocol Successes (cont) A-CHI • Implemented access logs • Different categories of users • Automatic removal if no access within 3 month period • New access request form and management of access • Training manual

  22. Caldicott Principles ‘Ideally, the transfer of all confidential person-identifiable information should be governed by clear and transparent protocols that satisfy the requirements of law and guidance and regulate working practices in both the disclosing and receiving organisations. It is particularly important that those asked to transfer patient information can be confident that the highest standards, agreed in advance, will apply and that the information will only be used for agreed and ligitimate purposes.’

More Related