THE RENAL NETWORK, INC.
Approved - June 28, 1989
Network Coordinating Council
POLICY: CONFIDENTIALITY
The purpose of this policy is to protect the confidentiality of patient specific data files belonging to the The Renal Network, Inc.
DATA DISSEMINATION
The dissemination to the public of patient specific data shall be in aggregate form. No aggregate data shall be released which contains information that could identify the patient to the general public. Aggregate data disseminated to the public may, at the discretion of the Board of Trustees, be center or facility specific.
Dialysis and transplant facilities and centers may request and obtain information on their own patients which is patient name specific.
The Health Care Financing Administration has final authority over the release of all data and must be consulted on requests for data of a sensitive nature. All data requests must be in writing to the Network office and be approved by the Executive Director.
NETWORK OFFICE CONFIDENTIALITY PROCEDURES
All patient specific hard copy information that comes into the Network office is contained in a locked drawer prior to processing. Once processed, hard copy data is filed in a locked filing cabinet. Hard copy data is retained in the Network office for five years at which time it is disposed of.
Computerized patient specific data is kept in password protected files. The file name is known only to Network employees. Access to the computer requires an employee password. The computer cannot be accessed after business hours as it is turned off at the end of each day.
REMEDIES
Breech of this confidentiality policy is grounds for termination of Network employment and/or other appropriate legal action.