ABSTRACT
Data protection and security are critical components of routine pathology practice because laboratories are legally required to securely store and transmit electronic patient data. With increasing connectivity of information systems, laboratory work-stations, and instruments themselves to the Internet, the demand to continuously protect and secure laboratory information can become a daunting task. This review addresses informatics security issues in the pathology laboratory related to passwords, biometric devices, data encryption, internet security, virtual private networks, firewalls, anti-viral software, and emergency security situations, as well as the potential impact that newer technologies such as mobile devices have on the privacy and security of electronic protected health information (ePHI). In the United States, the Health Insurance Portability and Accountability Act (HIPAA) govern the privacy and protection of medical information and health records. The HIPAA security standards final rule mandate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of ePHI. Importantly, security failures often lead to privacy breaches, invoking the HIPAA privacy rule as well. Therefore, this review also highlights key aspects of HIPAA and its impact on the pathology laboratory in the United States.
ABSTRACT
BACKGROUND: Last year, our pathology informatics fellowship added informatics-based interactive case studies to its existing educational platform of operational and research rotations, clinical conferences, a common core curriculum with an accompanying didactic course, and national meetings. METHODS: The structure of the informatics case studies was based on the traditional business school case study format. Three different formats were used, varying in length from short, 15-minute scenarios to more formal multiple hour-long case studies. Case studies were presented over the course of three retreats (Fall 2011, Winter 2012, and Spring 2012) and involved both local and visiting faculty and fellows. RESULTS: Both faculty and fellows found the case studies and the retreats educational, valuable, and enjoyable. From this positive feedback, we plan to incorporate the retreats in future academic years as an educational component of our fellowship program. CONCLUSIONS: Interactive case studies appear to be valuable in teaching several aspects of pathology informatics that are difficult to teach in more traditional venues (rotations and didactic class sessions). Case studies have become an important component of our fellowship's educational platform.
