Untitled Document

ST. JOSEPH REGIONAL MEDICAL CENTER
Lewiston, Idaho

ACCESS AND CONFIDENTIALITY AGREEMENT FOR PROVIDER OFFICE STAFF

As a physician or clinic office employee, you may have access to what this Agreement refers to as “confidential information.” The purpose of this Agreement is to help you understand your duty regarding confidential information.

Confidential information includes patient/member information, employee information, financial information, other information relating to St. Joseph Regional Medical Center (SJRMC), and information proprietary to other companies or persons. You may learn of or have access to some or all of this confidential information through a computer system, through your professional care to patients/members, or through your normal duties as an employee.

Confidential information is valuable, sensitive, and is protected by law and by strict SJRMC policies. The intent of these laws and policies is to assure that confidential information will remain confidential--that is, it will be used only as necessary to accomplish the organization’s mission.

As an employee with access to confidential information contained in the SJRMC database, you are required to follow SJRMC policies governing confidential information. Your principal obligations in this area are explained below. You are required to read and abide by these duties. The violation of any of these duties will subject you to discipline, which may include, but not be limited to, loss of computer privileges, loss of employment, and/or legal liability.

As a physician or clinic office employee, your access to confidential information may include information relating to:

•Patient/member (such as medical records, admitting information, lab results, etc.)

•Third party information (such as computer programs, client and vendor proprietary information, source code, proprietary technology, etc.)

All of the examples of information may be considered confidential. Therefore, you promise that:

1. You will use confidential information only as needed to perform your legitimate duties as a physician or clinic office employee. This means, among other things, that:

• You will only access confidential information for which you have a need to know; and

• You will not in any way divulge, copy, release, sell, loan, review, alter, or destroy any confidential information except as properly authorized within the scope of your regular duties as an employee; and

•You will not misuse confidential information or carelessly care for confidential information.

2. You will safeguard and will not disclose your password, PIN, or other access code or authorization that allows you to access confidential information. You accept responsibility for all activities undertaken using your password, PIN, or other access code or authorization.

3. You will report activities by any individual or entity that you suspect may compromise the confidentiality of confidential information.

4. You understand that your obligations under this Agreement will continue after termination as a physician or clinic office employee.

5. You understand that you have no right to ownership in any confidential information referred to in this Agreement. SJRMC may at any time revoke your password, PIN, or other access code, or access to confidential information. At all times during your employment, you will safeguard and retain the confidentiality of all confidential information.

6. You will be responsible for your misuse or wrongful disclosure of confidential information and for your failure to safeguard your password, PIN, or other access code or authorization access to confidential information. You understand that your failure to comply with this Agreement may also result in loss of privilege to access confidential information, loss of employment, and/or legal liability, as applicable.

7. Remote access (from outside of the medical center) will require secure Virtual Private Network (VPN), SSL or subscription to SJRMC’s wide are wireless network.

8. If you cannot remember your password, contact the SJRMC Management Information Systems department Help Desk at 799-5571. The operator or technician will establish positive identification using keyword identifier, then assign a new password.


version 1.0 Warning: Centricity DICOM Viewer is intended for secondary review and patient consultation only and should not be used to review studies for primary diagnosis.
ST. JOSEPH REGIONAL MEDICAL CENTER Lewiston, Idaho ACCESS AND CONFIDENTIALITY AGREEMENT FOR PROVIDER OFFICE STAFF As a physician or clinic office employee, you may have access to what this Agreement refers to as “confidential information.” The purpose of this Agreement is to help you understand your duty regarding confidential information. Confidential information includes patient/member information, employee information, financial information, other information relating to St. Joseph Regional Medical Center (SJRMC), and information proprietary to other companies or persons. You may learn of or have access to some or all of this confidential information through a computer system, through your professional care to patients/members, or through your normal duties as an employee. Confidential information is valuable, sensitive, and is protected by law and by strict SJRMC policies. The intent of these laws and policies is to assure that confidential information will remain confidential--that is, it will be used only as necessary to accomplish the organization’s mission. As an employee with access to confidential information contained in the SJRMC database, you are required to follow SJRMC policies governing confidential information. Your principal obligations in this area are explained below. You are required to read and abide by these duties. The violation of any of these duties will subject you to discipline, which may include, but not be limited to, loss of computer privileges, loss of employment, and/or legal liability. As a physician or clinic office employee, your access to confidential information may include information relating to: •Patient/member (such as medical records, admitting information, lab results, etc.) •Third party information (such as computer programs, client and vendor proprietary information, source code, proprietary technology, etc.) All of the examples of information may be considered confidential. Therefore, you promise that: 1. You will use confidential information only as needed to perform your legitimate duties as a physician or clinic office employee. This means, among other things, that: • You will only access confidential information for which you have a need to know; and • You will not in any way divulge, copy, release, sell, loan, review, alter, or destroy any confidential information except as properly authorized within the scope of your regular duties as an employee; and •You will not misuse confidential information or carelessly care for confidential information. 2. You will safeguard and will not disclose your password, PIN, or other access code or authorization that allows you to access confidential information. You accept responsibility for all activities undertaken using your password, PIN, or other access code or authorization. 3. You will report activities by any individual or entity that you suspect may compromise the confidentiality of confidential information. 4. You understand that your obligations under this Agreement will continue after termination as a physician or clinic office employee. 5. You understand that you have no right to ownership in any confidential information referred to in this Agreement. SJRMC may at any time revoke your password, PIN, or other access code, or access to confidential information. At all times during your employment, you will safeguard and retain the confidentiality of all confidential information. 6. You will be responsible for your misuse or wrongful disclosure of confidential information and for your failure to safeguard your password, PIN, or other access code or authorization access to confidential information. You understand that your failure to comply with this Agreement may also result in loss of privilege to access confidential information, loss of employment, and/or legal liability, as applicable. 7. Remote access (from outside of the medical center) will require secure Virtual Private Network (VPN), SSL or subscription to SJRMC’s wide are wireless network. 8. If you cannot remember your password, contact the SJRMC Management Information Systems department Help Desk at 799-5571. The operator or technician will establish positive identification using keyword identifier, then assign a new password.