NCJ Number
51181
Journal
Evaluation and Program Planning Volume: 1 Dated: (1978) Pages: 151-158
Date Published
1978
Length
7 pages
Annotation
LEGAL PROTECTION, TECHNOLOGICAL SAFEGUARDS, AND MANAGERIAL RESPONSIBILITY ARE CONSIDERED IN RELATION TO THE CONCEPT OF PRIVACY IN INFORMATION SYTEMS.
Abstract
IN A SOCIETY WHERE THE USE OF COMPUTERIZED INFORMATION SYSTEMS IS EXTENSIVE, THE CONCEPT OF PRIVACY, I.E., THE RIGHT TO KEEP MATTER OF PERSONAL CONCERN SECRET, TAKES ON AN EMOTIONAL CHARACTER. OPERATORS AND DEVELOPERS OF INFORMATION SYSTEMS, MANY OF WHICH USE COMPUTERS, ARE AWARE OF PUBLIC CONCERN OVER THE RIGHT OF PRIVACY AND HAVE EMPLOYED TECHNOLOGY INHERENT IN COMPUTERS, AS WELL AS EXPERTISE IN LAW AND MANAGEMENT, TO DEVELOP METHODS FOR PROTECTING DATA AND SAFEGUARDING PRIVACY. IN 1967, A RESEARCH AND DEVELOPMENT PROJECT WAS FUNDED BY THE NATIONAL INSTITUTE OF MENTAL HEALTH THAT LED TO THE CREATION OF THE MULTISTATE INFORMATION SYSTEM (MSIS). THE MSIS SERVES MENTAL HEALTH AND DEVELOPMENTAL DISABILITIES PROGRAMS THROUGH SEVERAL COMPUTERS. PRIVACY ISSUES USUALLY ADDRESS QUESTIONS OF WHO MAY ACCESS, PROCESS, STORE, AND DISSEMINATE INFORMATION ABOUT OTHER INDIVIDUALS IN THE CONTEXT OF LEGAL PROTECTION. BASIC PRINCIPLES REGARDING HEALTH RECORDS HAVE BEEN ESTABLISHED AS A RESULT OF VARIOUS STUDIES AND RECOMMENDATIONS. UNDER THE PRIVACY ACT (P.L. 93-579), EACH FEDERAL AGENCY MUST PUBLISH AN ANNUAL NOTICE DESCRIBING ANY PERSONAL RECORD SYSTEM IT HAS AND MUST DOCUMENT ALL INFORMATION EXCHANGES. THE FREEDOM OF INFORMATION ACT (P.L. 90-23) ALLOWS THE PUBLIC TO REQUEST INFORMATION FROM RECORDS OF THE FEDERAL GOVERNMENT. FROM THE TECHNOLOGICAL SAFEGUARD STANDPOINT, PRIVACY AND CONFIDENTIALITY PROTECTION PRESUPPOSES CONTROL OF THE ENVIRONMENT SO THAT DATA INTEGRITY IS MAINTAINED AND ACCESS TO INFORMATION IS APPROPRIATELY LIMITED. IN ORDER TO MEET THE DEMANDS OF THIS SUPPOSITION, MANAGERS OF INFORMATION SYSTEMS MUST CONSIDER BOTH MAN-MADE AND NATURAL THREATS. BECAUSE OF THE SENSITIVITY OF CERTAIN TYPES OF DATA, ALL LEVELS OF PERSONNEL, INCLUDING CLINICAL, ADMINISTRATIVE, AND DATA PROCESSING STAFF, MUST BE COMMITTED TO PRINCIPLES OF PRIVACY AND CONFIDENTIALITY AS PART OF THEIR MANAGERIAL RESPONSIBILITY. MANAGEMENT IS ALSO RESPONSIBLE FOR CREATING INDIVIDUAL JOB SPECIFICATIONS SO THAT EACH EMPLOYEE'S DUTIES AND RESPONSIBILITIES ARE DISTINCTIVE. IN REVIEWING DATA PROTECTION NEEDS, IT IS OFTEN HELPFUL TO DEVELOP A SENSITIVITY SCALE FOR PERSONAL INFORMATION THAT CAN SERVE AS A GUIDE TO DISSEMINATION CONTROL. REFERENCES ARE INCLUDED. (DEP)