Hello there, reader! Before you read further, this post is #5 out of seven. The previous ones are Autonomy, Benevolence, Non-Malevolence, and Justice, and I would suggest reading through all of these, in order, before reading on.
So when it comes to confidentiality, it’s easier defined than implemented. Confidentiality means not divulging information extraneous to what is required; to inform on a need-to-know basis. But when it comes to information, how does one decide which pieces of information to divulge, and which ones to lock up? It’s pretty apparent for occupational information, but what about the personal? And even then, how to we ensure that we protect information without leaving loopholes for others to break through?
To help illustrate that last point, let’s think about what I mean by “loophole”. Whether that’s a “Remember me” check box, or a piece of convenient code to bypass certain security entrances, or even flaws in your logic when you make up an elaborate lie. Whatever it is, you are BOUND to have a security loophole if you choose to hide information. How do you keep your best friend’s secret, and function normally, if the secret is so fundamental to their life, yet unseemingly so for you?
It doesn’t help if psychological and physiological disorders cause you to be even MORE mindful of what you say…or in certain case, it takes the control AWAY from you. It stops you from doing the things you need to do in order to keep things a secret…in order to make rational decisions on how and what to organise as “secret” and “presentable” information.
In a medical context, imagine identifying a patient without dehumanizing them to being called something along the lines of “the appendicitis in ward 5B-12”. What sort of information is safe to pass around to identify the patient? Date of birth, full name, and address? That’s enough to send scam mail to the resident, to stalk the family of the patient, and to effectively open them up to theft, murder, or both.
Then what? What should we use? Patient ID number? Well, the problem with that is the patient details are stored on the hospital mainframe, and using the patient’s hospital ID will allow any intruders to alter the medical conditions of the patient, possibly causing the patient’s death via practitioners providing incorrect medical treatment. Though, depending on the patient type, it’s not likely to happen unless there is a mass change-over in duty of care in the hospital’s staff.
Of course, this isn’t the end of the discussion! Keep it going by commenting below on your arguments, thoughts, opinions, et cetera. Subscribe to see the final two posts, and don’t forget to check out the rest of my content!
And as always, dear reader, DFTBA!