The document discusses issues with patient privacy violations in hospitals and proposes training to address the problem. It describes a study that examined teaching patient privacy and ethics in the UK. The proposed training would include defining privacy, dignity and respect; exploring best practices; and developing individual action plans. Training modules would cover HIPAA rules, self-evaluation from the patient's perspective, company ethics, IT security, and testing of competency. The goal is to educate employees and prevent future privacy violations and HIPAA fines.

2. THE VIOLATION
PATIENT PRIVACY VIOLATIONS HAVE OCCURRED MORE OFTEN THAN NORMAL, ESPECIALLY FOR CELEBRITY
PATIENTS AND FOR HOSPITALS WITH NO SAFEGUARDS TO PATIENT RECORDS. IN ORDER TO FIX THE
PROBLEM WE HAVE TO MAKE SURE EVERYONE IS IN COMPLETE UNDERSTANDING OF THE LAW AND HOW
THEY CAN VIOLATE THEM.

3. HOW DO WE FIX THE PROBLEM?
A STUDY DOCUMENTED BY ANGELINA CHADWICK EXAMINED PRIVACY, DIGNITY, AND RESPECT IN THE
UNITED KINGDOM, FOCUSING ON TEACHING AND IMPLEMENTING PATIENT PRIVACY AND ETHICS.

4. THE WORKSHOP
THE WORKSHOP OVERALL AIMS AND OBJECTIVES INCLUDED:
• TO DEFINE PRIVACY, DIGNITY AND RESPECT.
• TO IDENTIFY AND RECOGNIZE BEST PRACTICE TO DISCUSS THE PATIENT EXPERIENCE (USING A VIGNETTE)
• TO EXPLORE IMPROVEMENTS TO PRACTICE
• TO IMPROVE THE PATIENT EXPERIENCE TO DEVELOP INDIVIDUAL ACTION PLANS
• TO ENABLE CHANGES IN PRACTICE THE
(CHADWICK, 2012, PG. 186).

5. TRAINING
THE FIRST TYPE OF TRAINING I WOULD ESTABLISH
AMONG MY TEAM IS SELF EVALUATION AS A
PATIENT. SCENARIOS IN THIS TRAINING WOULD
INCLUDE GOSSIP, RUMORS, AND PRIVACY OF
INFORMATION AS A PATIENT. THIS HELPS PUT
EMPLOYEES IN THE PLACE OF THE PATIENTS THAT
HAVE BEEN VIOLATED.

6. PUT YOURSELF IN THEIR SHOES
• HOW DO YOU VIEW PATIENT PRIVACY?
• HAS YOUR PRIVACY EVER BEEN VIOLATED?
• HOW DID THIS MAKE YOU FEEL?
• WHAT WOULD YOU SUGGEST THEY DO DIFFERENT?
• WHAT WOULD YOU SAY TO THEM IF YOU HAD THE CHANCE?

7. HIPAA TRAINING
ACCORDING TO THE US DEPARTMENT OF HEALTH AND HUMAN SERVICES WEBSITE, OCR HAS SIX EDUCATIONAL
PROGRAMS FOR HEALTH CARE PROVIDERS ON COMPLIANCE WITH VARIOUS ASPECTS OF THE HIPAA PRIVACY
AND SECURITY RULES.
• EHRS AND HIPAA: STEPS FOR MAINTAINING THE PRIVACY AND SECURITY OF PATIENT INFORMATION
• YOUR MOBILE DEVICE AND HEALTH INFORMATION PRIVACY AND SECURITY
• UNDERSTANDING THE BASICS OF HIPAA SECURITY RISK ANALYSIS AND RISK MANAGEMENT CME
• PATIENT PRIVACY: A GUIDE FOR PROVIDERS
• HIPAA AND YOU: BUILDING A CULTURE OF COMPLIANCE
• EXAMINING COMPLIANCE WITH THE HIPAA PRIVACY RULE

8. HIPAA TRAINING
HIPAA TRAINING WOULD BE
MANDATORY FOR ALL EMPLOYEES,
AS WELL AS PASSING A
COMPETENCY EXAM ON RULES AND
REGULATIONS IN ORDER TO
CONTINUE TO WORK WITH THE
HOSPITAL.

9. COMPANY ETHICS TRAINING
THE NEXT TRAINING WOULD BE OF COMPANY ETHICS LEAD BY THE HOSPITALS ETHICS
COMMITTEE. ACCORDING TO THE ARTICLE BY PEARLMAN, “THE UNDERLYING GOALS OF
TRADITIONAL ETHICS COMMITTEES ARE: TO PROMOTE THE RIGHTS OF PATIENTS; TO
PROMOTE SHARED DECISION MAKING BETWEEN PATIENTS (OR THEIR SURROGATES IF
DECISIONALLY INCAPACITATED) AND THEIR CLINICIANS; TO PROMOTE FAIR POLICIES AND
PROCEDURES THAT MAXIMIZE THE LIKELIHOOD OF ACHIEVING GOOD, PATIENT-CENTERED
OUTCOMES; AND TO ENHANCE THE ETHICAL ENVIRONMENT FOR HEALTH CARE
PROFESSIONALS IN HEALTH CARE INSTITUTIONS.”

10. Author Unknown (2008) Report: Over 120 UCLA Hospital Staff Saw Celebrity Health Records
http://www.foxnews.com/story/2008/08/06/report-over-120-ucla-hospital-staff-saw-celebrity-health-
records.html
Chadwick, A. (2012) A dignified approach to improving the patient experience: Promoting privacy, dignity
and respect through collaborative training. In Nurse Education in Practice July 2012 12(4):187-191
Helping Entities Implement Privacy and Security Protections
Medscape Programs Retrieved June 25 2015 from
http://www.hhs.gov/ocr/privacy/hipaa/understanding/training/
Pearlman, R. (2013) Ethics in Medicine. Retrieved on June 25, 2015 from
https://depts.washington.edu/bioethx/topics/ethics.html
REFERENCES

11. IT SECURITY TRAINING
• THIS TRAINING WOULD BE SOLELY ON INFORMATION TECHNOLOGY, SAFEGUARDS, PASSWORD RESETS,
AND REPORTING ON FRAUD OR UNETHICAL BEHAVIOR AMONG COLLEAGUES.
• TO PREVENT LAWSUIT AND HIPAA FINES, WE NEED TO MAKE SURE OUR EMPLOYEES ARE CAREFUL WITH
PRIVY INFORMATION AND THEIR LOG INS.
• ROUTINE AUDITS ON PATIENTS CHARTS WILL BE DONE AND COMMUNICATEDTO MEDICAL STAFF TO
FOREWARN OF NECESSITY BEFORE OPENING PATIENTS FILES.

12. TESTING
AFTER COMPLETION OF THE WORKSHOP TRAINING ON ETHICS &
PATIENT PRIVACY, ALL EMPLOYEES WILL TAKE A COMPETENCY EXAM
AND RESIGN AGREEMENTS ON PATIENT PRIVACY AND HIPAA
COMPLIANCE.
IN THIS WAY, WE WILL BE ABLE TO HOLD OUR EMPLOYEES
ACCOUNTABLE AND PREVENT HIPAA FINES.