Managing hospital databases: can large hospitals really protect patient data?

Between 1998 and 2003 a number of European countries, the UK, Canada, Australia and the US all introduced data privacy legislation that sought to comply with the European Data Privacy Directive of 1995 in protecting the privacy of individuals undergoing treatment in large hospitals. In 2004 we find that hospital administrators within these jurisdictions are still struggling to find ways to implement and maintain hospital databases while complying with the given legislation - where compliance seems to require a whole new approach to database management. This research examines the UK Data Protection Act 1998 and considers whether current database management systems allow the EU Directives contained in the Act to be followed in practice. It finds a number of recurrent problems with hospital systems that would make compliance with the Act difficult. These findings have significant implications for hospital information systems development and design.

[1]  John Leubsdorf,et al.  Privacy and Freedom , 1968 .

[2]  Charlotte A. Twight Dependent on D.C.: The Rise of Federal Control over the Lives of Ordinary Americans , 2002 .

[3]  Richard Y. Wang,et al.  A product perspective on total data quality management , 1998, CACM.

[4]  Ken Jarrold,et al.  Code of Conduct for NHS managers. , 2003, Nursing ethics.

[5]  R Saracci,et al.  Directive of the European Parliament and of the council on the protection of individuals with regard to the processing of personal data and on the free movement of such data. The International Epidemiological Association-IEA European Epidemiological Group. , 1995, International journal of epidemiology.

[6]  M Stone,et al.  What proportion of patients refuse consent to data collection from their records for research purposes? , 2000, The British journal of general practice : the journal of the Royal College of General Practitioners.

[7]  Joseph H. Simons Science as a way of life. , 1960 .

[8]  Joseph Gray Jackson,et al.  Privacy and Freedom , 1968 .

[9]  Catherine Schulten Integration Architectures in Healthcare and How to Extend Access to Mobile Healthcare Workers , 2001 .

[10]  A. Westin,et al.  The assault on privacy , 1971 .

[11]  Adam Warren,et al.  Sources of Literature on Data Protection and Human Rights , 2001, J. Inf. Law Technol..

[12]  S. Ziebland,et al.  How the internet affects patients' experience of cancer: a qualitative study , 2004, BMJ : British Medical Journal.

[13]  Ian England The Status of Health IT Expenditure: A Qualitative Study of Senior Executives in Regard to IT Investment , 2001 .

[14]  G. Stevens A Brief Summary of the Medical Privacy Rule , 2002 .

[15]  Thomas C. Redman,et al.  Data Quality: The Field Guide , 2001 .

[16]  Ralph Stair,et al.  Principles of information systems , 2014 .

[17]  Robert Boguslaw,et al.  Privacy and Freedom , 1968 .

[18]  P Starr,et al.  Smart technology, stunted policy: developing health information networks. , 1997, Health affairs.

[19]  Reeva Lederman,et al.  Why are we waiting? How poor information systems increase hospital queues , 2002 .