Helen Healiss, managing director of Accuro, talks about security standard ISO 27001
A recent report* that an NHS Trust shared the information of 1.6 million patients with a service run by Google has again raised concerns about how health data is being treated. There are obvious and important questions about what information is involved and how it’s being protected including patient records.
It’s also a timely reminder to us to focus the attention more than ever on having the right IT security levels in place and the paramount importance of healthcare providers engaging organisations who have achieved the ISO 27001 information security standard.
ISO 27001 is an information security standard to allow organisations such as Accuro, which operates a hub in a virtual world to enable healthcare providers to safely submit dictation for transcribing, to maintain an effective data management system through continual improvement.
The standard covers the governance of security information and network systems – it’s important that healthcare service providers are properly accredited to confirm that their processes and technology are as safe and secure as possible.
This goes to the heart of protecting customer data as an integral part of a firm’s operation.
ISO 27001 accreditation has to be seen as critical to ensuring customers have confidence in an organisation’s attitude towards data security and protection – accreditation underlies a commitment to customers and the paramount focus on security.
As well as the underlying message this sends out to customers, it also provides reassurance in the procurement process and completing RFP and tender documentation.