Difference between revisions of "Audit trails"
From Clinfowiki
| Line 1: | Line 1: | ||
| − | Audit Trails | + | '''Audit Trails''' are logs that include the date and time of access, the information or record accessed, and the user ID under which [[Access control|access]] occurred. |
| − | + | ||
| − | Organizations that provide health care to their own employees | + | Organizations should maintain in retrievable and usable form audit trails that log all accesses to clinical information. |
| − | should enable employees to conduct audits of accesses to their own health records. | + | |
| − | Organizations should establish procedures for reviewing audit logs to detect inappropriate | + | Organizations that provide health care to their own employees should enable employees to conduct audits of accesses to their own health records. Organizations should establish procedures for reviewing audit logs to detect inappropriate accesses. We should provide procedures for and a record of “random” sampling of the audit logs. |
| − | accesses. We should provide procedures for and a record of “random” sampling of the audit logs. | + | |
== References == | == References == | ||
# http://www.nap.edu/catalog/5595.html | # http://www.nap.edu/catalog/5595.html | ||
Revision as of 19:57, 16 October 2011
Audit Trails are logs that include the date and time of access, the information or record accessed, and the user ID under which access occurred.
Organizations should maintain in retrievable and usable form audit trails that log all accesses to clinical information.
Organizations that provide health care to their own employees should enable employees to conduct audits of accesses to their own health records. Organizations should establish procedures for reviewing audit logs to detect inappropriate accesses. We should provide procedures for and a record of “random” sampling of the audit logs.
