Would anyone be willing to share how your organization handles a breach-of-privacy complaint investigation? At my hospital, we are reassessing our process of managing these complaint investigations. We are working towards having one formal body to oversee the whole investigation and communication process, whether the complaint arises from one of our associates or a patient. That one person would then pull in the necessary resources as needed, such as HR, Information Services, Risk Management, etc., still staying with the concept that minimum resources needed would be involved. I would think that a CPO could fill these shoes. Since I have not been successful in researching these type of investigative processes, any feedback would be appreciated.
Rebecca Hallisy Information Security Administrator Information Services, Sparrow Health System ********************************************************************** To be removed from this list, go to: http://snip.wedi.org/unsubscribe.cfm?list=privacy and enter your email address.
