Original Research
Reasons for Picture Archiving and Communication System (PACS) data security breaches: Intentional versus non-intentional breaches
Submitted: 10 October 2017 | Published: 11 October 2016
About the author(s)
Tintswalo B. Mahlaola, Department of Medical Imaging and Radiation Sciences, Faculty of Health Sciences, University of Johannesburg, South AfricaBarbara van Dyk, Department of Medical Imaging and Radiation Sciences, Faculty of Health Sciences, University of Johannesburg, South Africa
Full Text:
PDF (389KB)Abstract
Objective: The purpose of this article is to explore the nature of and reasons for confidentiality breaches by PACS users in a South African context.
Methods: A closed-ended questionnaire was used to collect quantitative data from 115 health professionals employed in a private hospital setting, including its radiology department and a second independent radiology department. The questionnaire sought to explore the attitudes of participants towards confidentiality breeches and reasons for suchbehaviour.
Results: Breach incidences were expressed as percentage compliance and classified according to the nature and reasons provided by Sarkar's breach classification. Cross tabulations indicated a statistical significance (p < 0.00) between the expected and observed confidentiality practices of participants and also the adequacy of training, system knowledge and policy awareness.
Conclusion: Our study supports previous findings that, in the absence of guidelines, most security breaches were non-intentional acts committed due to ignorance. Of concern are incidents in which sensitive information was intentionally shared via social media.
Keywords
Metrics
Total abstract views: 3411Total article views: 1503