5 Training Trustees should have appropriate agreements in place to ensure that employees are aware of the organization’s privacy and security policies and procedures and their responsibility for compliance. As well, employees should receive annual mandatory training to remind them of their obligations and responsibilities to protect personal and personal health information and to access it on a need-to-know basis. It is important that all employees are made aware that monitoring of user’s activity will occur without notice. Sources Used Canada Health Infoway. (2012). Privacy and EHR Information Flows in Canada: Common Understandings of the Pan-Canadian Health Information Privacy Group. Retrieved from https://www.infowayinforoute.ca/en/component/edocman/resources/reports/privacy/502-privacy-and-ehr-informationflows-in-canada-version-2-0?Itemid=101 Manitoba Health, Healthy Living and Seniors. (2014). Guidelines for Records of User Activity (RoUA). Retrieved from https://www.gov.mb.ca/health/phia/docs/gfroua.pdf Saskatchewan Medical Association. (2013). Privacy and Security Resource Materials for Saskatchewan EMR Physicians: Guidelines, Samples and Templates. Retrieved from http://www.sma.sk.ca/kaizen/content/files/Reference_Manual_Jan_2013(1).pdf
RkJQdWJsaXNoZXIy MTgwMjYzOA==