How are your patient records secured?
Everyone who works in a hospital agrees that the care and safety of the patient comes first. As a CIO, you know better than anyone that in addition to the physical care provided by your hospital, you are also responsible for the security of all confidential patient information, such as the EHR. Are these patient files actually maximally secured and do you know who has access to these patient files?
Healthcare providers - like any other organisation - have to conform to the GDPR. In concrete terms, this means that hospitals must work according to the NEN 7510, 7512 and 7513 standards. Careful compliance with this standard leads to better care for patients because medical data is processed and exchanged in the correct manner. Confidential information is only available to the patient and the healthcare provider can view medical information if strictly necessary. But.... This will not happen by itself. Hospital IT organisations must set up their IT services in such a way that their healthcare institution complies with the NEN 7510, 7512 and 7513 standards. This standard is tested and verified annually for the required compliance by an external audit.
What is to be done then?
In order to comply with NEN 7510, 7512 and 7513, an IT department must perform activities related to the set-up of the information systems and the working method of the department. These activities are the same for every hospital and health care institution. These activities can then be secured in the work processes of the IT department. A NEN 7510 certification is valid for 3 years. Each year, an external auditor checks whether compliance still meets the NEN 7510, 7512 and 7513 standards. After three years, a full recertification audit is required to regain accreditation.
Need support?
DBHeroes has extensive experience with data, databases and the application of the NEN 7510, 7512 and 7513 standards. Do you want to know how to apply logging or check that a solution of a supplier does not endanger the implemented measures? Please feel free to contact us, even if you want to spar about this or any other subject. We will be happy to help you.