Audit Report of the Medical Information System

Abstract

 We audited the medical information system based on the operation manual made according to the government’s guideline. [Audit enforcing date] The audit of the access logs went on July 4 and 13, 2001 and the audits of the others went in August. [Audited items] The user education, the user manual, security/privacy protection, and the measure against a system obstacle as described in the operation manual were audited. [Consideration] No serious problem in the system was found by this audit. There were some small troubles in usage or the system, but no serious confusion in usage. However, it was unlikely that this audit was fully effectively attained. There is no rule in detail about audit items in our manual. Moreover, methods to solve problems found by audit are not described in the operation manual at all. It is necessary to make regulations of the audit methods and the contents for medical information system in detail.