Abstract
In the operation of the electronic medical record system in a hospital, it is an important issue to prevent patients’ private information being peeped for purposes other than the original intent. For this purpose, approaches of the next two steps were carried out. 1) Users of the system were informed that the browsing record of patients’ medical records will be audited. 2) The access history of the personal information of patients who were staffs were notified to the individual users by E-mail monthly. As a result, the numbers of the users who browsed the medical records of patients who were staffs were decreased. Since it is difficult to judge the purpose of access by the browsing record, this method remains insufficient for purpose of automatic audit. However, it is thought that this method is effective to call attention to the protection of patients’ personal information.
