Privacy Risk Prevention Of Electronic Medical Record

In the information age,electronic medical record has incomparable advantages over traditional paper medical record,so it is widely used.In China,more than 96% of hospitals have carried out the construction of hospital information system.Electronic medical record records all the data of patients’ medical treatment process,which has high application value for medical institutions and third parties,but has high physiological and psychological sensitivity for patients.Medical institutions as the collection,storage and application of electronic medical record data,any poor technology or improper management may lead to large-scale privacy infringement cases.Once the privacy of the patient’s electronic medical record is violated,the patient’s social evaluation,personal dignity or property interests will be damaged,which may lead to more serious doctor-patient conflicts,affect social stability and threaten national security.Therefore,in the context of deepening the reform of the medical and health system and promoting the construction of medical information system,balancing the application of electronic medical records and the protection of patient privacy has become a hot concern of public management departments.The core issue of this study is "how to prevent the privacy risk of electronic medical records".In order to fully answer this question,this study comprehensively uses risk society theory,risk management theory and privacy computing theory as theoretical tools,and adopts literature survey method,experimental survey method,expert survey method and fuzzy comprehensive evaluation method.Following the basic risk management logic of "risk identification-risk assessment-risk control",the overall framework of electronic medical record privacy risk prevention is constructed.Firstly,from the perspective of privacy content management and privacy security management of electronic medical record,the privacy risk of electronic medical record is divided into two types: content risk and privacy security risk of electronic medical record.Secondly,the risk identification and assessment methods of privacy content risk and privacy security risk of electronic medical records were designed respectively,and an empirical evaluation was conducted by taking Z Hospital in Henan Province as an example.Finally,based on the results of the privacy risk assessment of electronic medical records,the corresponding privacy risk prevention strategy of electronic medical records is proposed for the reference of relevant demanders.The main conclusions of this study are as follows:First,the privacy risk identification of electronic medical records.Through questionnaire survey and offline interview,this study found that the disease type of patients is the key factor affecting the privacy sensitivity of electronic medical record,the privacy risk of electronic medical record depends on the sensitivity of patients to their disease type.Through literature survey and field research,this study found that the privacy security risks of electronic medical records exist in different stages of the life cycle of electronic medical records,including 15 risk factors such as "the risk of private collection by medical institutions" and "the risk of recording errors by medical personnel".Second,the privacy risk assessment of electronic medical records.Through the experimental investigation,this study found that the privacy risk of electronic medical records in the Z Hospital(located in Henan Province)is at a high level.The data analysis results show that the privacy risk of electronic medical records depends on the disease type of patients and is affected by demographic factors of patients.Through expert investigation,this study found that the privacy security risk of electronic medical records in Z Hospital(located in Henan Province)is at a medium level.Among them,the privacy security risk of electronic medical records in data collection stage is low,the privacy security risk of electronic medical records in data preservation stage is medium,and the privacy security risk of electronic medical records in data application stage is high.Third,the privacy risk prevention of electronic medical records.In view of the risk prevention of electronic medical record privacy content,this study puts forward the processing standard of electronic medical record data anonymity and the hierarchical protection mechanism of electronic medical record privacy data,which helps medical institutions improve the efficiency of electronic medical record privacy protection and reduce the cost of electronic medical record privacy protection from the micro point of view.In view of the prevention of privacy security risks of electronic medical records,this study suggests that regulations on the protection of privacy of electronic medical records should be formulated as soon as possible and construct the privacy security protection mechanism of electronic medical records,so as to improve the awareness of the privacy protection of electronic medical records of medical institutions and medical personnel,and reduce the probability of the occurrence of privacy security risks of electronic medical records.The innovation of this study lies in:First,innovation of research perspective.This study comprehensively analyzed the privacy risk of electronic medical records,and divided the privacy risk of electronic medical records into the privacy content risk of electronic medical records and the privacy security risk of electronic medical records from the two perspectives of the privacy content management of electronic medical records and the privacy security management of electronic medical records,and the privacy content risk of electronic medical record is the premise and basis of the existence of privacy security risk of electronic medical record,thus supplementing the type of privacy risk of electronic medical record.Second,innovation of research methods.On the one hand,the privacy content risk assessment model of electronic medical record is constructed.Based on the BDM auction mechanism,this study constructed an electronic medical record privacy risk assessment model.In order to evaluate the privacy content risk of electronic medical record,this paper investigated patients’ perception of the value of their electronic medical record privacy content by means of experimental auction.The results of the survey are relatively true and reliable,avoiding the hypothetical bias that questionnaire survey method may produce.On the other hand,the privacy security risk assessment model of electronic medical records is constructed.Entropy weight coefficient method was used to calculate the weight of electronic medical record privacy security risk assessment index to avoid the subjectivity of expert scoring,fuzzy comprehensive evaluation method was used to accurately deal with the fuzziness of expert evaluation,so as to make the results of electronic medical record privacy security risk assessment more scientific and reasonable.