Privacy practices in collaborative environments: A study of emergency department staff

Proceedings of the ACM Conference on Computer Supported Cooperative Work, CSCW

Volumn , Issue , 2014, Pages 269-282

  Murphy, Alison R ^a   Reddy, Madhu C ^a   Xu, Heng ^a  

^a PENNSYLVANIA STATE UNIVERSITY   (United States)

Author keywords

Collaboration; Collaborative privacy practices; Computer supported cooperative work; Privacy; Privacy design; Privacy policy

Indexed keywords

COMPUTER SUPPORTED COOPERATIVE WORK; DATA PRIVACY; EMERGENCY ROOMS; INTERACTIVE COMPUTER SYSTEMS;

COLLABORATION; COLLABORATIVE ENVIRONMENTS; COLLABORATIVE SETTINGS; EMERGENCY DEPARTMENTS; ETHNOGRAPHIC STUDY; PRIVACY DESIGN; PRIVACY POLICIES; PRIVACY PRACTICES;

GROUPWARE;

EID: 84898941140     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2531602.2531643     Document Type: Conference Paper

References (53)

1. Ash, J.S., Berg, M., and Coiera, E. Some unintended consequences of information technology in health care: The nature of patient care information system-related errors. Journal of the American Medical Informatics Association, 11, 2 (2004), 104-112.
2. Angst, C.M. and Agarwal, R. Adoption of electronic health records in the presence of privacy concerns: The elaboration likelihood model and individual persuasion. MIS Quarterly, 33, 2 (2009), 339-370.
3. Barrows, R.C. and Clayton, P.D. Privacy, confidentiality, and electronic medical records. Journal of the American Medical Informatics Association, 3, 2 (1996), 139-148.
4. Bartsch, S. Exploring twisted paths: Analyzing authorization processes in organizations. In Proc. Network and System Security, (2011), 216-223.
5. Bauer, L., Cranor, L.F., Reeder, R.W., Reiter, M.K., and Vaniea, K. Real life challenges in access-control management. In Proc. CHI 2009, ACM Press (2009), 899-908.
6. Belanger, F. and Crossler, R.E. Privacy in the digital age: A review of information privacy research in information systems. MIS Quarterly, 35, 4 (2011), 1017-1041.
7. Besmer, A. and Lipford, H.R. Moving beyond untagging: Photo privacy in a tagged world. In Proc. CHI 2010, ACM Press (2010), 1563-1572.
8. Bethencourt, J., Sahai, A., and Waters, B. Ciphertext-policy attribute-based encryption. In Proc. IEEE Symposium on Security and Privacy, (2007), 321-334.
9. Braun, V. and Clarke, V. Using thematic analysis in psychology. Qualitative Research in Psychology, 3, 2 (2006), 77-101.
10. Chen, Y., Nyemba, S., and Malin, B. Detecting anomalous insiders in collaborative information systems. IEEE Transactions on Dependable and Secure Computing, 9, 3 (2012), 332-344.
11. Chen, Y. and Xu, H. Privacy management in dynamic groups: Understanding information privacy in medical practices. In Proc. CSCW 2013, ACM Press (2013), 541-552.
12. Choi, Y.B., Capitan, K.E., Krause, J.S., and Streeper, M.M. Challenges associated with privacy in health care industry: Implementation of HIPAA and the security rules. Journal of Medical Systems, 30, 1 (2006), 57-64.
13. Coiera, E. and Clarke, R. e-Consent: The design and implementation of consumer consent mechanisms in an electronic environment. Journal of the American Medical Informatics Association, 11, 2 (2004), 129-140.
14. Culnan, M.J. and Williams, C.C. How ethics can enhance organizational privacy: Lessons from the choicepoint and TJX data breaches. MIS Quarterly, 33, 4 (2009), 673-687.
15. Fabbri, D. and LeFevre, K. Explaining accesses to electronic medical records using diagnosis information. Journal of the American Medical Informatics Association, 20, 1 (2013), 52-60.
16. Fisher, J.A. and Monahan, T. Tracking the social dimensions of RFID systems in hospitals. International Journal of Medical Informatics, 77, 3 (2008), 176-183.
17. Fitzpatrick, G. and Ellingsen, G. A review of 25 years of CSCW research in healthcare: Contributions, challenges, and future agendas. Journal of CSCW, (2012), 1-57.
18. Flores Zuniga, A.E., Win, K.T., and Susilo, W. Biometrics for electronic health records. Journal of Medical Systems, 34, 5 (2010), 975-983.
19. Fuhrer, P. and Guinard, D. Building a smart hospital using RFID technologies. In Proc. European Conference on eHealth, (2006), 131-142.
20. Heckle, R., Lutters, W. G., and Gurzick, D. Network authentication using single sign-on: the challenge of aligning mental models. In Proc. Computer Human Interaction for Management of Information Technology, (2008), 6-15.
21. Hewitt, B. Exploring how security features affect the use of electronic health records. International Journal of Healthcare Technology and Management, 11, 1 (2010), 31-49.
22. Hoadley, C.M., Xu, H., Lee, J.J., and Rosson, M.B. Privacy as information access and illusory control: The case of the Facebook news feed privacy outcry. Electronic Commerce Research and Applications, 9, 4 (2010), 649-664.
23. Hu, J., Chen, H.H., and Hou, T.W. A hybrid public key infrastructure solution (HPKI) for HIPAA privacy/security regulations. Computer Standards and Interfaces, 32, 5 (2010), 274-280.
24. Koppel, R., Wetterneck, T., Telles, J.L., and Karsh, B.T. Workarounds to barcode medication administration systems: Their occurrences, causes, and threats to patient safety. Journal of the American Medical Informatics Association, 15, 4 (2008), 408-423.
25. Liu, C. and Arnett, K.P. Raising a red flag on global WWW privacy policies. Journal of Computer Information Systems, 43, 1 (2002), 117-127.
26. Lovis, C., Spahni, S., Cassoni, N., and Geissbuhler, A. Comprehensive management of the access to the electronic patient record: Towards trans-institutional networks. International Journal of Medical Informatics, 76, 5 (2007), 466-470.
27. Mandl, K.D., Szolovits, P., and Kohane, I.S. Public standards and patients' control: How to keep electronic medical records accessible but private. British Medical Journal, 322, 7281 (2001), 283-287.
28. Medlin, B.D. and Romaniello, A. An investigative study: Health care workers as security threat suppliers. Journal of Information Privacy and Security, 3, 1 (2007), 30-46.
29. Murphy, A.R., Reddy, M.C., Xu, H., and Ringel, B. Exploring collaborative privacy practices. In Proc. CHI 2011 Workshop "Privacy for a Networked World: Bridging Theory and Design," ACM Press (2011).
30. Narayan, S., Gagne, M., and Safavi-Naini, R. Privacy preserving EHR system using attribute-based infrastructure. In Proc. ACM 2010 Workshop "Cloud Computing Security," ACM Press (2010), 47-52.
31. Palen, L. and Dourish, P. Unpacking "privacy" for a networked world. In Proc. CHI 2003, ACM Press (2003), 129-136.
32. Parks, R., Chu, C. H., and Xu, H. Healthcare information privacy research: Issues, gaps and what next? In Proc. 2011 Americas Conference on Information Systems, (2011).
33. Patil, S. and Kobsa, A. Privacy in collaboration: Managing impression. In Proc. 2005 International Conference on Online Communities and Social Computing, (2005).
34. Prabhakar, S., Pankanti, S., and Jain, A.K. Biometric recognition: Security and privacy concerns. IEEE Journal of Security &Privacy, 1, 2 (2003), 33-42.
35. Randell, R., Wilson, S., Woodward, P. and Galliers, J.R. The ConStratO model of handover: A tool to support technology design and evaluation. Behaviour &Information Technology, 30, 4 (2011), 489-498.
36. Reddy, M. and Dourish, P. A finger on the pulse: Temporal rhythms and information seeking in medical work. In Proc. CSCW 2002, ACM Press (2002), 344-353.
37. Salomon, R.M., Blackford, J.U., Rosenbloom, S.T., Seidel, S., Clayton, E.W., Dilts, D.M., and Finder, S.G. Openness of patients' reporting with use of electronic records: Psychiatric clinicians' views. Journal of the American Medical Informatics Association, 17, 1 (2010), 54-60.
38. Smith, H.J. Privacy policies and practices: Inside the organizational maze. Communications of the ACM, 36, 12 (1993), 105-122.
39. Smith, H. J., Dinev, T., and Xu, H. Information privacy research: An interdisciplinary review, MIS Quarterly, 35, 4 (2011), 989-1015.
40. Son, J.Y. and Kim, S.S. Internet users' information privacy-protective responses: A taxonomy and a nomological model. MIS Quarterly, 32, 3 (2008), 503-529.
41. Stutzman, F. and Kramer-Duffield, J. Friends only: Examining a privacy-enhancing behavior in Facebook. In Proc. CHI 2010, ACM Press (2010), 1553-1562.
42. Squicciarini, A.C., Xu, H., and Zhang, X. CoPE: Enabling collaborative privacy management in online social networks. Journal of the American Society for Information Science and Technology, 62, 3 (2010), 521-534.
43. Turner, E.C. and Dasgupta, S. Privacy on the web: An examination of user's concerns, technology, and implications for business organizations and individuals. Information Systems Management, 20, 1 (2003), 8-18.
44. U.S. Department of Health and Human Services. (2013). "Breaches Affecting 500 or More Individuals." Retrieved from: http://www.hhs.gov/ocr/ privacy/hipaa/administrative/breachnotificationrule/breachtool.html.
45. U.S. Department of Health and Human Services. (2013). "Health Information Privacy." Retrieved from: http://www.hhs.gov/ocr/privacy/.
46. U.S. Department of Health and Human Services. (2013). "HITECH Act Enforcement Interim Final Rule." Retrieved from: http://www.hhs.gov/ocr/ privacy/hipaa/administrative/enforcementrule/hitechenforcementifr.html.
47. U.S. Government. (2013). "American Recovery and Reinvestment Act of 2009". Retrieved from: http://www.recovery.gov/About/Pages/The-Act.aspx.
48. Vogelsmeier, A.A., Halbesleben, J.R.B., and Scott-Cawiezell, J.R. Technology implementation and workarounds in the nursing home. Journal of the American Medical Informatics Association, 15, 1 (2008), 114-119.
49. Wears, R. L., Perry, S. J., Wilson, S., Galliers, J., and Fone, J. Emergency department status boards: User-evolved artefacts for inter-And intra-group coordination. Cognition, Technology &Work, 9, 3 (2007), 163-170.
50. Win, K.T. A review of security of electronic health records. Health Information Management, 34, 1 (2005), 13-18.
51. Xu, H., Dinev, T., Smith, H.J., and Hart, P. Examining the formation of individual's information privacy concerns: Toward an integrative view. In Proc. International Conference on Information Systems, (2008).
52. Xu, H., Teo, H.H., Tan, B.C.Y., and Agarwal, R. The role of push-pull technology in privacy calculus: The case of location-based services. Journal of Management Information Systems, 26, 3 (2009), 137-176.
53. Yao, W., Chu, C.H., and Li, Z. The use of RFID in healthcare: Benefits and barriers. In Proc. 2010 IEEE International Conference on RFID Technology and Applications, (2010), 128-134.