Standards and Guidelines for Electronic Medical Record Systems in ...

More documents

Recommendations

Info

A locally stored backup log should be maintained with the following information as minimum: i. name of media used; ii. Type of backup (e.g. full backup/incremental, differential, etc.); iii. date the backup was performed; iv. verification status (completed/failed); v. who performed the backup (automated or by specific staff); and vi. Location where the backup media is stored, date it was placed there, and who placed it there. (NB: See Annex F for a sample Backup Log) Backup procedures should allow for daily backups, as well as, include the possibility for performing day-to-day restorations or full data recovery. The backup process should be automated wherever possible in order to ensure consistency. Off-site backup media should be given the same level of physical and environmental protection that is required for the primary site as defined in this document. This includes security during the transportation of media and documentation between the facility and the off-site location. A documented procedure should be in place that outlines the off-site backup process. At a minimum this should include a list of who is authorized to send data off-site, to where, and who is authorized to recall data. Computer Virus and Spyware Control 1. All computer systems must have virus detection software installed and updated regularly. 2. Antivirus software should be configured to scan all removable media when inserted into the system for viruses. Computer viruses are a significant threat to the integrity and confidentiality of data on computer systems. A facility operating an EMR system should have a written procedure on how to update the antivirus definition files, either automatically through the internet or periodically using remotely downloaded files. A full virus scan should be performed routinely and each time virus definition files are updated. Standards and Guidelines for Electronic Medical Records Systems in Kenya 71
All software and data should be scanned before it is loaded onto any facility computer system. All software from public or private sources, including but not limited to the internet, electronic bulletin boards, etc., should be ensured virus and spyware free before use. Upon the discovery of a suspected virus that cannot be removed or controlled with the installed anti-virus software, the computer system user should: i. Cease all operations; ii. Notify the responsible computer system support personnel; iii. Document conditions and status of the environment; and iv. Report the occurrence to the appropriate support. EMR System Support EMR systems will need regular maintenance and support for the hardware and software. The quality of the system support will ultimately determine the success or failure of an EMR system. Depending on availability of resources and local expertise, support capacity can either be assigned to staff within the facility using the EMR, shared resources between facilities, or outsourced. Requirements 1. Every facility or institution using an EMR system will identify its source of support, which may be sourced either internally or externally through a service level agreement. 2. The source of support and how to access itshall be known to the management and to all users within the facility. Implementation Guidance · The most basic support structure is online help, context help and online tutorials that provide guidance to the user at the click of a button. Alternatively, users should be provided with printed support documentation mimicking system help. These provide users with a quick reference on how to use the system. Standards and Guidelines for Electronic Medical Records Systems in Kenya 72
Page 1 and 2:
Ministry of Medical Services Minist
Page 4 and 5:
Acknowledgements This initial publi
Page 6 and 7:
Change Management Process .........
Page 8 and 9:
Architecture Enterprise Architectur
Page 10 and 11:
and without the ability to share pa
Page 12 and 13:
Purpose of this document This docum
Page 14 and 15:
Globally, several organizations hav
Page 16 and 17:
will be reviewed by the technical w
Page 18 and 19:
Section Introduction The section de
Page 20 and 21:
The above listed documentation requ
Page 22 and 23:
Clinical Decision Support This refe
Page 24 and 25: H = Requirements. These items tare
Page 26 and 27: 4.3. System has the capability to r
Page 28 and 29: 10.2. System has the capability of
Page 30 and 31: 16. Children’s Health 16.1. Syste
Page 32 and 33: The recommendations in this section
Page 34 and 35: Backup Backup is the procedure for
Page 36 and 37: Case Example: Building an EMR syste
Page 38 and 39: o Date medically eligible to start
Page 40 and 41: o Height o Blood pressure o BMI Whe
Page 42 and 43: · Form 711 - Cross-sectional quart
Page 44 and 45: Section Introduction Within the hea
Page 46 and 47: Data Transmission Protocols There a
Page 48 and 49: i. EMR systems ii. Patient Identifi
Page 50 and 51: Summary Primary Actor Secondary Act
Page 52 and 53: Use Case Title Summary Primary Acto
Page 54 and 55: Business Rules Pre-condition(s) Cor
Page 56 and 57: Section Introduction The implementa
Page 58 and 59: Requirements 1. Servers and worksta
Page 60 and 61: informatics skills in order to effe
Page 62 and 63: competencies will be of greater use
Page 64 and 65: esponsible for utilizing the inform
Page 66 and 67: expertise, this cadre is also likel
Page 68 and 69: Data Quality and Confidentiality Id
Page 70 and 71: Demonstrate use of mouse functions
Page 72 and 73: Health facility management plays a
Page 76 and 77: · User related issues could also b
Page 78 and 79: Upgrade Scheduling The EMR system n
Page 80 and 81: Monitoring is an ongoing, continuou
Page 82 and 83: down these alerts on a notification
Page 84 and 85: Hardware requirements Other infrast
Page 86 and 87: System Costs, Ownership and Sustain
Page 88 and 89: their health records upon request o
Page 90 and 91: A. Sample EMR Implementation Plan E
Page 92 and 93: deployment of the EMR (i.e. change
Page 94 and 95: C. EMR Readiness Assessment Checkli
Page 96 and 97: Is there a computer at each point o
Page 98 and 99: D. Security Policy Template Documen
Page 100 and 101: 1.9 Employees shall not access, sto
Page 102 and 103: E. Information Asset Inventory Name
Page 104 and 105: G. Sample Service Level Agreement T
Page 106 and 107: • Determine appropriate incident
Page 108 and 109: H. Sample EMR Monitoring and Evalua
Page 110 and 111: Strongly agree Agree Disagree Stron
Page 112 and 113: Functional areas Attributes Compone
Page 114 and 115: Functional areas Attributes Compone
show all

Standards and Guidelines for Electronic Medical Record Systems in ...

Create successful ePaper yourself

Delete template?

Save as template?