Health informatics — Guidance on health information privacy education in healthcare organizations

This document provides guidance for healthcare organisations to establish and improve health information privacy education for their workforce. It specifies the essential educational components recommended to establish and deliver a privacy education program. The primary users of this document are those responsible for planning, establishing and delivering healthcare information privacy education to a healthcare organisation.

This document provides the components of privacy education within the context of roles and job responsibilities. It is the responsibility of the organisation to define and apply privacy protection policies and procedures and, in turn, ensure that all staff understand their privacy protection responsibilities.

Main sections:

· Scope

· Understanding information privacy in healthcare

· Information privacy education in healthcare

· Examples of content modules

· Instructional methods, delivery mechanisms and evaluation

· Annex A: ISO/TC215 Health informatics: List of standards on privacy protection

· Annex B: Setting learning objectives (example) (Source: TriageTraining Group, HIPAA training playbook)

· Annex C: Level of Learning Objectives by Audience (Provided by South Korea)

· Annex D: Educational methods (examples)

· Annex E: Questions for quiz for privacy education (example) (Provided by South Korea)