Access
Users access eCare through their existing systems. This ensures that only those who have received proper authorisation from their employing Agency will have access. eCare maintains an audit of those accessing shared records. There is no facility for a practitioner to browse any shared records. These measures ensure that only authorised practitioners with a legitimate requirement can access any shared record.
Security
The eCare Security Policy informs how eCare information assets are protected from all threats, whether internal or external, intentional or accidental. The eCare Security Policy states that:
- Information is protected against unauthorised access;
- Confidentiality of eCare data is assured;
- Integrity of eCare data and eCare functions is maintained;
- Availability of eCare data and eCare functions is maintained;
- Authentication ensures the access of authorised individuals only;
- Regulatory and legislative requirements are met;
- Business continuity plans are produced, maintained and tested;
- Individual agencies will ensure that appropriate I.T. Security training is given to all staff as part of their request for admission to the eCare Framework;
- All breaches of information security (actual or suspected) are reported to the eCare Information Security Coordinator for investigation.