The Office of the Information and Privacy Commissioner (OIPC) has found that Alberta Health Services (AHS) did not fail to safeguard health information and took necessary action in responding to a computer virus that briefly infected the AHS-Edmonton network in May.
These findings, detailed in an OIPC report released Thursday, complemented findings with an internal review that AHS completed and shared with the Information and Privacy Commissioner in July.
More than 11,000 AHS health records were affected when a virus infected the network over a two-week stretch in May.
According to the release, AHS has since put forward seven internal recommendations, all of which are in the process of being implemented as part of the organization’s larger information security and management program, AHSecure.
The AHS recommendations address areas where improvement will benefit the prevention, detection and containment of computer virus attacks, and will enhance the ability of AHS to keek patient information secure.