MEDICAL RECORDS,

SECURITY, AND DATA

PROTECTION ACT
 CONTENT
1 What is medical records?

2 Importance of medical records

3 Purpose of medical records

4 Security of Records

5 Elements in Privacy Practices

6 RA 10173
MEDICAL RECORDS

A medical record is a collection of information about an individual’s health and medical

history. This record is typically created, maintained, and accessed by healthcare
professionals such as doctors, nurses, pharmacists, and other clinicians. It contains
information about the patient’s medical and treatment history, including symptoms,
diagnoses, test results, treatments, medications, and other relevant clinical data.
WHAT IS THE
IMPORTANCE OF
MEDICAL RECORDS?
IMPORTANCE OF
MEDICAL RECORDS
SAVES VALUABLE TIME

01 Patient's medical records are consulted before any diagnosis or treatments are prescribed
when they arrive for a doctor's appointment. By having the necessary information about
existing conditions or allergies already available, searching for pertinent details can be
avoided, which helps save valuable time during the appointment.

HELPS DOCTORS TO PROVIDE

02 EFFECTIVE DIAGNOSIS
An organized medical record provides information about a patient's health history, vital for proper
diagnosis. It gives insight into conditions that may have been previously diagnosed and helps
physicians determine the best course of action when approaching any new health matters.
Moreover, medical records can also help doctors better understand how certain illnesses or
injuries may be linked with past diagnoses.
IMPORTANCE OF
MEDICAL RECORDS
REDUCES MEDICAL ERRORS

03 The importance of medical records cannot be understated when it comes to reducing

errors. By having up-to-date information about a patient’s history, medications, and test
results readily available, physicians can make informed decisions about their care.

SAVES MONEY ON RETESTS

04 Keeping a meticulous record of all patient appointments, diagnoses, treatments, and tests is
essential for quality patient care. Not only does it help physicians provide better treatment for
patients, but it can also save them money by reducing the need for costly retests.
IMPORTANCE OF
MEDICAL RECORDS
CATCHES THE POSSIBILITY OF A CHRONIC

05 CONDITION
Keeping a medical record is important because it helps identify the probability of having
lifestyle diseases such as diabetes and heart attacks. All individuals need to have their
own medical records containing information about any previous illnesses or treatments
they have had, as well as their family’s medical history. This helps doctors recognise
patterns and trends that can help them better assess a patient’s risk of developing certain
chronic diseases.
 PURPOSE OF
MEDICAL RECORDS

CONTINUITY OF RESEARCH &

COMMUNICATION
CARE LEGAL QUALITY
DOCUMENTATION
DOCUMENTATION IMPROVEMENT
OF PATIENT CARE BILLING &
REIMBURSEMENT

Santos, Monica Grace Go

 1. DOCUMENTATION OF
PATIENT CARE
2. CONTINUITY OF CARE
Medical records provide a
comprehensive history of a patient's
health, including diagnosis, treatments,
medications, test results, and ongoing Medical records help ensure continuity of
care. This information helps healthcare care by providing a complete medical
providers make informed decisions and history that can be shared with new
provide appropriate care. healthcare providers when a patient
changes doctors or facilities in order to
coordinate and ensure consistent treatment.

Santos, Monica Grace Go

 3. LEGAL
DOCUMENTATION
Medical records can serve as legal
evidence in case of medical disputes or
malpractice claims, helping to protect
both patients and healthcare
professionals. They document the care
and treatment a patient has received.
4. BILLING & REIMBURSEMENT
Medical records are used for billing and
reimbursement purposes, helping
healthcare providers and institutions
receive right payment for services rendered
to patients.
Santos, Monica Grace Go
 5. COMMUNICATION
Medical records facilitate
communication among healthcare
professionals. They allow different
providers involved to coordinate care
and share information about a patient's
condition and treatment plan.
6. RESEARCH & QUALITY
IMPROVEMENT
Medical records provide valuable data for
medical research studies. By analyzing
data obtained from medical records,
researchers can generate new knowledge,
contribute to scientific advancements, and
improve patient care.
Santos, Monica Grace Go
SECURITY OF
RECORDS
The security of records involves implementing protective
measures to safeguard sensitive or confidential information,
whether in physical or digital form. It encompasses strategies and
practices to ensure the privacy, integrity, and availability of these
records.

BY: RODRIGO NICOLE M.

Nicole Rodrigo
TYPES OF SECURITY IN RECORDS
MANAGEMENT:
PAPER RECORDS
Paper records, also known as physical records or hard-copy records, refer to documents, information, or
data that are recorded, stored, or maintained on paper or other physical media, as opposed to digital or
electronic formats
PAPER RECORDS
MANAGEMENT
TYPES OF SECURITY
LOCKED STORAGE SECURE STORAGE
FIRE & FLOOD
AREAS FACILITIES
PROTECTION Secure storage facilities are essential
Locking storage areas is a fundamental
Balancing both fire and flood for organizations that handle sensitive
security measure for protecting paper
protection measures is essential for records and data. They provide a
records and other valuable items within
comprehensive records management, controlled and protected environment,
an organization. Securing them in filing
especially in regions susceptible to reducing the risk of data breaches,
cabinet's or file room. Access to these
these types of disasters. Proper unauthorized access, and physical
rooms should be restricted to
planning and safeguards can damage to critical records. They
authorized individuals.
significantly reduce the risk of losing implement 24/7 security.
critical records.

Nicole Rodrigo
DIGITAL RECORDS
Digital records, are electronic versions of information and documents. Instead of being on physical
paper, they are stored in digital formats like files on computers or data in databases. This allows for
easier storage, retrieval, and management of the information using electronic devices.

DIGITAL RECORDS
MANAGEMENT
TYPES OF SECURITY

DOCUMENT
FILE ENCRYPTION
REDACTION File encryption is a security technique
Document redaction is the process of ACCESS CONTROL that involves the process of encoding or
selectively editing or removing sensitive LISTS converting the contents of a file into an
or confidential information from a unreadable format to protect the data it
Access Control Lists (ACLs) are a set of
document, often for legal, privacy, or contains. This is done to ensure the
permissions or rules that specify which
security reasons. This process is typically confidentiality and privacy of the
users or system processes are granted
applied to electronic documents, such as information within the file, making it
access to objects, such as files,
text files, PDFs, images, or other digital inaccessible to unauthorized users.
directories, or network resources, and
formats.
what actions they can perform on those
objects.
Nicole Rodrigo
THE KEY COMPONENTS OF
RECORD SECURITY:
CONFIDENTIALITY
- Ensuring that records are only accessible by authorized individuals, protecting sensitive
information from unauthorized disclosure.
INTEGRITY
- Maintaining the accuracy and trustworthiness of records, preventing unauthorized
alterations or tampering.
AVAILABILITY
-Ensuring that records are accessible when needed and that they are not lost or
unavailable due to various factors.
ACCESS CONTROL
-Regulating who has access to records and what actions they can perform, typically
through user authentication and permissions.

ENCRYPTION
-Protecting records by converting data into a secure code that's difficult to decipher
without the proper decryption keys.
Nicole Rodrigo
 AUDITING AND
MONITORING
- Keeping records of who accesses the data and what changes are made, which can help in detecting and
responding to security incidents.

DATA BACKUP
-Regularly creating copies of records to prevent data loss in case of accidents, disasters, or cyberattacks.

PHYSICAL SECURITY
-Safeguarding physical records by controlling access to storage areas and protecting them from theft or
damage.
COMPLIANCE WITH
REGULATIONS
-Adhering to legal and industry-specific regulations to ensure data protection and privacy, which can vary
depending on the type of records.

TRAINING AND
AWARENESS
-Educating employees and users about security best practices and their role in maintaining record security.

Nicole Rodrigo
 ELEMENTS IN PRIVACY PRACTICES
CONSENT FOR DATA COLLECTION
Prior to gathering any personal data, organizations must obtain explicit consent from individuals. This consent
should be informed, meaning the individual should understand what data is being collected

DATA USAGE
Clarifications on how the collected data will be used.

DATA SHARING
Information on whether and with whom the data will be shared.

DATA SECURITY
Measures in place to protect data from unathorized access, breaches, or misuse.

ACCESS TO DATA
Individuals have the right to access their own personal information held by organizations. They can request to
view, obtain copies, or know how their data is being processed.

Marielle Trillana
DATA PRIVACY ACT OF 2012
Republic Act No. 10173 is also known as the Data Privacy Act of 2012 (DPA).

It (1) protects the privacy of individuals while ensuring free flow of information
to promote innovation and growth; (2) regulates the collection, recording,
organization, storage, updating or modification, retrieval, consultation, use,
consolidation, blocking, erasure or destruction of personal data; and (3) ensures
that the Philippines complies with international standards set for data protection
through National Privacy Commission

BY: RODRIGO NICOLE M.

Marielle Trillana
WHO IS THE NATIONAL PRIVACY
COMMISSION?

The National Privacy Commission (NPC) is the

country’s privacy watchdog; an independent
body mandated to administer and implement
the DPA, and to monitor and ensure compliance
of the country with international standards set
for data protection.

Marielle Trillana
 WHAT PERSONAL DATA IS
PROTECTED BY THE DATA
PRIVACY ACT? WHAT HAPPENS WHEN THE
RIGHT TO PRIVACY IS VIOLATED?
THE DATA PRIVACY ACT OF THE PHILIPPINES
PROTECTS ALL TYPES OF PERSONAL DATA,
INCLUDING NAME, ADDRESS, DATE OF BIRTH,
GOVERNMENT-ISSUED IDENTIFICATION, THE DATA PRIVACY ACT OF THE PHILIPPINES
CONTACT INFORMATION, FINANCIAL IMPOSES PRISON TERMS OF ONE TO THREE
INFORMATION, AND OTHER SENSITIVE DATA. THE YEARS AND FINES RANGING FROM P500,000 TO
LAW COVERS INFORMATION, MATERIAL FORM P2,000,000 ON INDIVIDUALS WHO KNOWINGLY
OR NOT, IF IT MAY BE FAIRLY AND IMMEDIATELY AND UNLAWFULLY ACCESS OR COMPROMISE
ASCERTAINED BY THE ENTITY HOLDING IT. THE DATA SYSTEMS THAT STORE SENSITIVE OR
DATA PRIVACY ACT OF THE PHILIPPINES PRIVATE INFORMATION.
PROTECTS SENSITIVE PERSONAL DATA,
INCLUDING FACTS ABOUT A PERSON’S HEALTH,
RACE, RELIGION, SEXUAL ORIENTATION, AND
POLITICAL AFFILIATIONS.

Marielle Trillana
 WHY IS DATA PRIVACY ACT
IMPORTANT IN THE HEALTH
SECTOR?

SECURITY
ETHICAL
COMPLIANCE
CONFIDENTIALITY RESPONSIBILITY
TRUST

Marielle Trillana