Professional Documents
Culture Documents
Aubrey Baker1, Laurian Vega2, Tom DeHart2, Steve Harrison2 Grado Department of Industrial and Systems Engineering1 & Center for Human Computer Interaction2, Virginia Tech, Blacksburg, VA, USA 24060 {AABaker, Laurian, TDeHart, SRH }@VT.edu
Summary
Part of the job of healthcare providers is to manage client information. Most is routine, but some is sensitive. For these reasons physicians offices provide a rich environment for understanding complex, sensitive information management issues as they pertain to privacy and security. We present findings from interviews and observations of 15 offices in rural-serving southwest Virginia. Our work demonstrates how the current socio-technical system fails to meet the security needs of the patient. In particular, we found that the tensions between work practice and security, and between electronic and paper records resulted in insecure management of files.
References
[1] Adams & Blandford (2005). "Bridging the gap between organizational and user perspectives of security in the clinical domain." IJHCS 63(1-2). [2] Adams & Sasse (1999). Users are not the enemy. Communications of the ACM. [3] Bellotti & Sellen (1993) "Design for Privacy in Ubiquitous Computing Environments," Conference on CSCW, Kluwer Academic Publishers. [4] Palen & Dourish (2003). Unpacking "privacy" for a networked world. Conference on Human Factors in Comp Sys, Ft. Lauderdale, Florida, ACM. [5] Starks & Trinidad (2007). "Choose your method: A comparison of phenomenology, discourse analysis, and grounded theory." Qual Health Res 17(10. [6] Carayon (2006). "Human factors of complex sociotechnical systems." Applied ergonomics 37(4). [7] Berner, Detmer & Simborg (2005). "Will the Wave Finally Break? A Brief View of the Adoption of Electronic Medical Records in the United States." JAMIA 12(1). [8] Satchell & Dourish (2009). Beyond the user: Use and non-use in HCI. OZCHI. Melbourne, ACM. [9] Baker, Aubrey, Laurian Vega, Tom DeHart, Steve Harrison. Healthcare & Security: Understanding & Evaluating the Risks. Presented at Human-Computer Interaction International (HCII11),ACM,2011. Orlando, Florida, USA. July 9th - 14th,2011.