Is mobile and wearable tech a security risk when it comes to general practice?
Almost everyone uses some kind of mobile or wearable device today, but how secure are they for use by GPs?
According to the Royal Australian College of General Practitioners (the RACGP), while mobile and wearable tech offers GPs some exciting possibilities, it is important to proceed cautiously.
The most recent research by the RACGP, the 2016 report Technology in General Practice: Mobilising Healthcare shows that while technology is fast and convenient, it is also insecure.
Email is so widespread and accepted that some patients assume it will be used by their GP. The problem is that most email is unencrypted and insecure. A malicious actor or third party may be able to access the information. This is even more of a risk when email is sent from a mobile device.
Since general practices must comply with the Australian Privacy Principles to protect patient confidentiality, there are serious risks for GPs who breach these principles. These could range from fines to legal action.
GPs can encrypt their emails, but there is no widespread solution for patients, leaving email as a potentially dangerous channel.
GPs who use their personal phones to send SMS to patients are compromising their own privacy and revealing their contact details. Patients may expect that their doctor will now be available around the clock.
It’s a great tool and so convenient, but consider the risks if you take a photo of a patient’s condition. Your phone has now become part of the record system. Is it secure? How do you ensure confidentiality? Can you transfer it securely to the patient’s records? How can you ensure it is no longer identifiable on your phone?
Fitbits and other wearable devices present similar issues with security. These devices can feed information to GPs, such as blood sugars or blood pressure. What process is in place for an urgent or emergency situation in the middle of the night? Does the patient expect the GP to be constantly monitoring her data or safety?
mHealth systems should be implemented, but only when a business case has been prepared. Safety and security issues are only one component of the overall system. Resources need to be allocated for support and training of admin staff if the move to mobile tech is going to be successful.
GPs need to have official policies concerning mobile devices, to clarify the issues and processes for both staff and patients. Preparing a policy brochure for patients that details confidentiality issues means they can make informed decisions and provide consent. As one example, using SMS for appointment reminders can be safe and effective if clinical information is excluded.
GPs looking to make more use of mobile and wearable tech, and wanting to avoid some of the security risks, would be well advised to read the RACGP’s resource: mHealth in general practice: A toolkit for effective and secure use of mobile technology.
The paperless office has been a dream for a long time, and there’s many reasons why we should pursue it. But the real benefit comes from gaining access to knowledge that comes from data.
While email has become an everyday part of our work-life, you still might be doing it wrong.
Working from home might not be all it’s cracked up to be if you don’t think ahead…
Boost your social, emotional and higher-level cognitive abilities to succeed in the high-tech workplace
With predictions that the workplace will replace universities as training grounds, how can you get your boss allowing you to upskill or pivot?
Traditional work desks are created for comfort. How can replicate this ergonomic experience at home?
Experts weigh in on how to dodge diversions and be more productive at work.
How does Australia stack up? What does it say about us as a workforce?
Boost your skills, discover new opportunities and improve your mood by giving up your time for the common good
If you lead an established, market-leading firm, you face a dilemma.
Manage your fleet of office devices, all from an easy-to-use online hub