Privacy Engineering: A Health Privacy Risk Model

Authors

Rohit Valecha, State University of New York at BuffaloFollow
H.R. Rao, Management Science and Systems, SUNY at Buffalo, Buffalo,Follow
Shambhu Upadhyaya, Department of Computer Science and Engineering, State University of New York, Buffalo, New YorkFollow

Abstract

Health institutions have realized the importance of privacy engineering that focuses on development of guidelines, practices and models for the protection of patients’ privacy. However, due to the intricate healthcare systems with transitive health workflows, the processing of patient information in one setting may be more problematic than that in another. As a solution to this problem, we deconstruct the complex transitive healthcare system into individual activity sub-systems, and develop an inter-organizational privacy risk model that facilitates assessing privacy risk in individual activity sub-systems within the transitive health information workflows. This research contributes to privacy engineering by demonstrating how the privacy risk model can be utilized to mitigate the risks to patient information.

Recommended Citation

Valecha, Rohit; Rao, H.R.; and Upadhyaya, Shambhu, "Privacy Engineering: A Health Privacy Risk Model" (2014). WISP 2014 Proceedings. 5.
https://aisel.aisnet.org/wisp2014/5