====== privacyPH.org/rules ====== #Privacy Set of Rules (SOR) This is the wiki for the development of the Privacy Set of Rules (SOR) that will be the basis for the Implementing Rules and Regulations (IRR) of the {{:joint_ao_2016-0002_privacy_guidelines_for_the_implementation_of_phie.pdf|Privacy Guidelines AO}}. Healthcare facilities will also evolve their own Privacy Protocols (PP) based on this SOR. \\ The initial rules were **[[:consolidated_workshop_outputs#references|consolidated outputs]]** from privacy workshops in Bacolod, Davao, Palawan, Metro Manila (including subsequent discussions via the PEG Mailing List). \\ Stakeholders may help revise this document. \\ For questions and concerns that cut across sections, please use the Discussion area below to raise them. \\ \\ ---- ##Introduction ####Definitions See [[Introduction]] ##Collection and Processing of Health Information ####Consent See [[consent_rules|Consent Rules]] ###Point of Collection See [[point_of_collection|Point of Collection]] ####Identification of Patient See [[identification_of_patient|Identification of Patient]] ####Data to be Collected See [[data_to_be_collected|Data to be Collected]] ####Information to be Shared See [[information_to_be_shared|Information to be Shared]] ####Filing / Storage See [[filing-storage|Filing / Storage]] ---- ##Access of Health Information See [[access_of_health_information|Access of Health Information]] ---- ##Use and Disclosure of Health Information See [[use_and_disclosure_of_health_information|Use and Disclosure of Health Information]] ---- ##Data Security ####Administrative Security See [[administrative_security|Administrative Security]] ####Physical Security See [[physical_security|Physical Security]] ####Technical Safeguards See [[technical_safeguards|Technical Safeguards]] ####Use of Social Media This subsection is deemed necessary for purposes of emphasis. * See [[use_of_social_media|Use of Social Media]] ####Cloud Computing * See [[Cloud Computing]] \\ ---- ##Compliance, Incident Reporting and Response This section has been identified as one of the gaps left unaddressed in one place in any of the workshops. See [[compliance_incident_reporting_response|Compliance, Incident Reporting and Response]]\\ \\ ---- ##Special Areas ###Human Resources * See [[Human Resources]] ###Health Research * See [[Health Research]] ###Patient Registries * See [[Patient Registries]] ###Publication and Public Communication * See [[Publication and Public Communication]] \\ ---- ##Privacy Bodies ### The Privacy Team of the Health Facility This section has been identified in the discussions as a gap that deserves separate treatment. See [[privacy_team|Privacy Team]] \\ ###Health Data Privacy Board (?) New section; not originally from the workshops. * See [[national_health_data_privacy_board|Health Data Privacy Board]] \\ ###Privacy Advisory Group (?) \\ ---- ## General Guidelines and Penalty Clause See [[general_guidelines_and_penalty_clause|General Guidelines and Penalty Clause]]\\ This subsection will be archived soon. The provisions here will the incorporated into other "live" subsections. \\ \\ ---- ##References * {{::workshop_output_consolidated_bacolod_city.pdf|Consolidated Output from Bacolod Workshop}} * {{::workshop_output_consolidated_davao_city.pdf|Consolidated Output from Davao Workshop}} * {{::palawanoutput.pdf|Consolidated Output from Palawan Workshop}} * {{::consolidatedworkshopoutputfromangeles.pdf|Consolidated Output from Angeles Workshop}} \\ \\ \\ ---- ##See Also * {{:joint_ao_2016-0002_privacy_guidelines_for_the_implementation_of_phie.pdf|Privacy Guidelines}} * [[http://www.gov.ph/2012/08/15/republic-act-no-10173/|Privacy Act of 2012]], {{::20120815-ra-10173-bsa.pdf|pdf}} * [[privacy_workshops|Privacy Workshops]] * [[PEG To Dos and Suggestions]] \\ \\ \\ ---- ~~DISCUSSION:closed~~