Ensuring the confidentiality and security of patient information is paramount to our commitment to quality healthcare. As valued members of the Mediclinic family, it is crucial that each employee upholds the highest standards in data privacy.
As a staff member of Mediclinic, you access facilities and rooms and use assets such as computers and medical devices. Based on your job role, you are provided with certain access rights incorporated in a badge or key or login credentials. It is extremely important that you protect your access rights and use them in the correct manner.
Key Points to Remember:
- Use of access rights: Use your access rights only in the context of the care you provide or the tasks you have. Accessing data of patients who are not under your care is not allowed and will be considered a confidentiality breach.
- Do I have the proper access rights? This is the question you should ask yourself from time to time. If you feel like you do not have proper access rights, address the issue to your line manager. Even if your access is too wide, it is a risk for you to access patient data that you should not. Ask your manager to have your access rights limited.
- Employee badge and keys: Always keep your badge and personal keys with you. Never leave them unattended or lend them to other people.
- Login credentials (user name, password, token, OTP etc.): Always keep your login details like user name and password, token and OTP secret. While the user name might be easy to guess within the company, it still should not be shared externally.
- Password: Never disclose your password to anybody - Not to ICT, to colleagues or to your line manager. Nobody else needs your login details except you. Everybody has an own login which he/she can use. For support, ICT administrators will either use their own login or, in case they use your login, they will ask you to enter your password yourself.
- “Windows logo” + “L”: This is the magic key to lock the screen of a Windows computer. Whenever you leave your workstation, lock the screen. It’s very easy. Just press the “Windows logo” key and “L” (for “lock”) when walking away. Alternatively, you may use “CTRL+ALT+DEL” and then select “Lock”. Make it a habit like hand hygiene.
You are responsible for the confidentiality of your access rights. If your access is being used, you will be held accountable if something goes wrong. In case of a confidentiality or data breach or asset misuse, you might face disciplinary sanctions from the company and the regulator.
Remember, our dedication to patient well-being extends beyond medical care; it includes safeguarding their privacy. Let us all contribute to fostering an environment where patients can trust that their information is handled with the utmost care and respect.
Thank you for your commitment to upholding the values that make Mediclinic a trusted healthcare provider.
Infobox
MCME ICT Acceptable Use Guidelines and Practice (Intranet), in particular sections B., C. and D.
MCME Access Control – User Responsibilities (Intranet)
How to create a strong password (Youtube)
For fun: Jimmy Kimmel - What is Your Password? (Youtube)