Analysis of the quality of hospital information systems Audit Trails.

Detalhes bibliográficos
Autor(a) principal: Cruz-Correia, Ricardo João
Data de Publicação: 2013
Outros Autores: Boldt , I, Lapão, L, Santos-Pereira, C, Rodrigues, PP, Ferreira , AM, Freitas, A
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10362/36519
Resumo: BACKGROUND: Audit Trails (AT) are fundamental to information security in order to guarantee access traceability but can also be used to improve Health information System's (HIS) quality namely to assess how they are used or misused. This paper aims at analysing the existence and quality of AT, describing scenarios in hospitals and making some recommendations to improve the quality of information. METHODS: The responsibles of HIS for eight Portuguese hospitals were contacted in order to arrange an interview about the importance of AT and to collect audit trail data from their HIS. Five institutions agreed to participate in this study; four of them accepted to be interviewed, and four sent AT data. The interviews were performed in 2011 and audit trail data sent in 2011 and 2012. Each AT was evaluated and compared in relation to data quality standards, namely for completeness, comprehensibility, traceability among others. Only one of the AT had enough information for us to apply a consistency evaluation by modelling user behaviour. RESULTS: The interviewees in these hospitals only knew a few AT (average of 1 AT per hospital in an estimate of 21 existing HIS), although they all recognize some advantages of analysing AT. Four hospitals sent a total of 7 AT - 2 from Radiology Information System (RIS), 2 from Picture Archiving and Communication System (PACS), 3 from Patient Records. Three of the AT were understandable and three of the AT were complete. The AT from the patient records are better structured and more complete than the RIS/PACS. CONCLUSIONS: Existing AT do not have enough quality to guarantee traceability or be used in HIS improvement. Its quality reflects the importance given to them by the CIO of healthcare institutions. Existing standards (e.g. ASTM:E2147, ISO/TS 18308:2004, ISO/IEC 27001:2006) are still not broadly used in Portugal.
id RCAP_b5e7bc836310372a6c16e62c1164720c
oai_identifier_str oai:run.unl.pt:10362/36519
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Analysis of the quality of hospital information systems Audit Trails.Health InformaticsHealth PolicySDG 3 - Good Health and Well-beingBACKGROUND: Audit Trails (AT) are fundamental to information security in order to guarantee access traceability but can also be used to improve Health information System's (HIS) quality namely to assess how they are used or misused. This paper aims at analysing the existence and quality of AT, describing scenarios in hospitals and making some recommendations to improve the quality of information. METHODS: The responsibles of HIS for eight Portuguese hospitals were contacted in order to arrange an interview about the importance of AT and to collect audit trail data from their HIS. Five institutions agreed to participate in this study; four of them accepted to be interviewed, and four sent AT data. The interviews were performed in 2011 and audit trail data sent in 2011 and 2012. Each AT was evaluated and compared in relation to data quality standards, namely for completeness, comprehensibility, traceability among others. Only one of the AT had enough information for us to apply a consistency evaluation by modelling user behaviour. RESULTS: The interviewees in these hospitals only knew a few AT (average of 1 AT per hospital in an estimate of 21 existing HIS), although they all recognize some advantages of analysing AT. Four hospitals sent a total of 7 AT - 2 from Radiology Information System (RIS), 2 from Picture Archiving and Communication System (PACS), 3 from Patient Records. Three of the AT were understandable and three of the AT were complete. The AT from the patient records are better structured and more complete than the RIS/PACS. CONCLUSIONS: Existing AT do not have enough quality to guarantee traceability or be used in HIS improvement. Its quality reflects the importance given to them by the CIO of healthcare institutions. Existing standards (e.g. ASTM:E2147, ISO/TS 18308:2004, ISO/IEC 27001:2006) are still not broadly used in Portugal.Instituto de Higiene e Medicina Tropical (IHMT)Centro de Malária e outras Doenças Tropicais (CMDT)RUNCruz-Correia, Ricardo JoãoBoldt , ILapão, LSantos-Pereira, CRodrigues, PPFerreira , AMFreitas, A2018-05-10T22:23:13Z20132013-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10362/36519engPURE: 4126356info:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-03-11T04:19:57Zoai:run.unl.pt:10362/36519Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-20T03:30:32.396866Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Analysis of the quality of hospital information systems Audit Trails.
title Analysis of the quality of hospital information systems Audit Trails.
spellingShingle Analysis of the quality of hospital information systems Audit Trails.
Cruz-Correia, Ricardo João
Health Informatics
Health Policy
SDG 3 - Good Health and Well-being
title_short Analysis of the quality of hospital information systems Audit Trails.
title_full Analysis of the quality of hospital information systems Audit Trails.
title_fullStr Analysis of the quality of hospital information systems Audit Trails.
title_full_unstemmed Analysis of the quality of hospital information systems Audit Trails.
title_sort Analysis of the quality of hospital information systems Audit Trails.
author Cruz-Correia, Ricardo João
author_facet Cruz-Correia, Ricardo João
Boldt , I
Lapão, L
Santos-Pereira, C
Rodrigues, PP
Ferreira , AM
Freitas, A
author_role author
author2 Boldt , I
Lapão, L
Santos-Pereira, C
Rodrigues, PP
Ferreira , AM
Freitas, A
author2_role author
author
author
author
author
author
dc.contributor.none.fl_str_mv Instituto de Higiene e Medicina Tropical (IHMT)
Centro de Malária e outras Doenças Tropicais (CMDT)
RUN
dc.contributor.author.fl_str_mv Cruz-Correia, Ricardo João
Boldt , I
Lapão, L
Santos-Pereira, C
Rodrigues, PP
Ferreira , AM
Freitas, A
dc.subject.por.fl_str_mv Health Informatics
Health Policy
SDG 3 - Good Health and Well-being
topic Health Informatics
Health Policy
SDG 3 - Good Health and Well-being
description BACKGROUND: Audit Trails (AT) are fundamental to information security in order to guarantee access traceability but can also be used to improve Health information System's (HIS) quality namely to assess how they are used or misused. This paper aims at analysing the existence and quality of AT, describing scenarios in hospitals and making some recommendations to improve the quality of information. METHODS: The responsibles of HIS for eight Portuguese hospitals were contacted in order to arrange an interview about the importance of AT and to collect audit trail data from their HIS. Five institutions agreed to participate in this study; four of them accepted to be interviewed, and four sent AT data. The interviews were performed in 2011 and audit trail data sent in 2011 and 2012. Each AT was evaluated and compared in relation to data quality standards, namely for completeness, comprehensibility, traceability among others. Only one of the AT had enough information for us to apply a consistency evaluation by modelling user behaviour. RESULTS: The interviewees in these hospitals only knew a few AT (average of 1 AT per hospital in an estimate of 21 existing HIS), although they all recognize some advantages of analysing AT. Four hospitals sent a total of 7 AT - 2 from Radiology Information System (RIS), 2 from Picture Archiving and Communication System (PACS), 3 from Patient Records. Three of the AT were understandable and three of the AT were complete. The AT from the patient records are better structured and more complete than the RIS/PACS. CONCLUSIONS: Existing AT do not have enough quality to guarantee traceability or be used in HIS improvement. Its quality reflects the importance given to them by the CIO of healthcare institutions. Existing standards (e.g. ASTM:E2147, ISO/TS 18308:2004, ISO/IEC 27001:2006) are still not broadly used in Portugal.
publishDate 2013
dc.date.none.fl_str_mv 2013
2013-01-01T00:00:00Z
2018-05-10T22:23:13Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10362/36519
url http://hdl.handle.net/10362/36519
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv PURE: 4126356
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1799137929774235648