How to Protect Staff Privacy and Manage Employee-specific Information

"Private" Photo by Tim Mossholder on Unsplash

Protected Personal Information

Protected Personal Information for staff in narratives and evidence should be avoided to protect privacy. Protected personal information that is considered confidential and personal, not used for the organization’s business includes, but is not limited to:

·       social security numbers

·       home address

·       personal phone numbers

·       salary

 

To protect personal information in the Magnet® document related to the mentoring, succession planning, or performance reviews, redaction or exclusion of staff names is acceptable. Role and credentials are acceptable identifiers in these SOE examples. Be careful NOT to hide/remove the role and credentials in your redactions.

 

To protect personal information in SOEs in the Magnet® document prior to site visit, the MPO has provided two options:

 

  • OPTION #1: Redact all protected personal information BEFORE entering or uploading to ADAM / ADAMplus (Recommended).

OR

  • OPTION #2: Create an alternative, edited “Organization/Public” version of the final Magnet® document submission where sections are hidden/removed for staff privacy. Make this version available for viewing as a printed hard-copy or hosted on an intranet or other website.

 

HOW to share the Magnet® Document in ADAM / ADAMplus:

 

Organizational Administrators can create user accounts assigning the “Organizational Post-Submission Reviewer” user type. This user type can view (read-only) all narrative, and evidence submitted to the MPO including all the history links.

 

The MPO recommends creating a ‘shared user account’ with a shared email address and password.

·       The shared email address must be a valid email address to establish and reset an associated password. For example, magnet-team@hospitalname.org, hospitalname-magnet-team@gmail.com, or a similarly generic email address created for this purpose.

·       After the Organizational Administrators create the shared user account and assign it to the Organizational Post-Submission Reviewer” user type, the login email address and password can be shared within the organization.

o   URL to access ADAMhttps://anccmagnet.org

o   Login (email address): <<shared email address that org admin creates and assigns to the Organizational Post-Submission Reviewer>>

o   Password: <<password that org admin creates and assigns to the Organizational Post-Submission Reviewer>>

Consult your Privacy Officer related to the organization's policy

Disclaimer:
The information and guidance in this discussion post/web page is not legal advice and should not be treated as such. The information is provided without any representations or warranties, expressed or implied. Information on this webpage may not constitute the most up-to-date information; and it contains links to other third-party websites for the convenience of the reader and ANCC does not recommend or endorse the contents of the third-party sites. We encourage you to consult with your Privacy and/or Compliance Officer, Legal, and Information Technology departments about your organization’s policies and procedures regarding the HIPAA Security Rule and safeguards.