Kan. Admin. Regs. § 28-67-8 - Record security
(a) All staff
engaged in the collection, handling, and dissemination of health care data
shall be informed of the responsibility to protect the data and the
consequences of failure to do so. When employees are hired, each employee shall
be instructed on the current procedures used to assure the security and
confidentiality of the data. A copy of the confidentiality policy shall be
provided to all personnel and a statement of responsibility for data
confidentiality shall be explained as a condition of employment.
(b) Employees shall be held accountable for
the appropriate use of individual data and for safeguarding the information in
their possession. Confidential data may be used only for purposes reviewed and
approved by the secretary. Any unauthorized use of health care data from the
database shall be strictly prohibited and may subject an employee to
termination.
(c) Access to the
database shall be restricted to those who specifically require access in order
to perform their assigned duties. Access policies and staff members needing to
access the database shall be established by the secretary.
(d) Supervisors shall be responsible for
maintaining the security for data in the area of their responsibility. Persons
or state agencies engaged in the collection, handling, and dissemination of
health care data shall develop procedures to govern the release of information.
Notes
State regulations are updated quarterly; we currently have two versions available. Below is a comparison between our most recent version and the prior quarterly release. More comparison features will be added as we have more versions to compare.
No prior version found.