CERIAS - Center for Education and Research in Information Assurance and Security

Skip Navigation
CERIAS Logo
Purdue University - Discovery Park
Center for Education and Research in Information Assurance and Security

Privacy Policies in Web-based Healthcare

Julie Earp - North Carolina State University

Mar 22, 2006

Size: 216.6MB

Download: Video Icon MP4 Video  
Watch in your Browser   Watch on Youtube Watch on YouTube

Abstract

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) has resulted in the presence of very descriptive privacy policies on healthcare websites. These policies are intended to notify users about the organization's privacy practices; however, they are typically not easy to read, leading few people to actually read them. Given the fact that these policies are not optional, but required by HIPAA, they should be presented in a clear and concise manner that encourages consumers to read them. At the present time, this is not the case. This seminar will present the preliminary results of our study that compares various ways to present privacy management information to healthcare consumers. The study involved an online experiment and survey of 993 Internet users.

About the Speaker

Julie Earp is an Associate Professor of Information Technology in the Business Management Department of the College of Management at NCSU.

She is heavily involved with the cooperative electronic commerce initiative and The Privacy Place, both which involve the College of Management and the College of Engineering. Her research focuses on Internet security and privacy issues from several different perspectives, including data management, consumer values, policy, economics and law. The ultimate goal of her work is to demonstrate the need for supporting the early stages of the software lifecycle, specifically addressing the need for novel approaches to security and privacy coverage in web-based systems. Her research recently gained international recognition as the best paper awarded by the Organizational and Communication Information Systems (OCIS) division of the Academy of Management in 2003. An extended version of this award winning paper is available at IEEE Transactions on Engineering Management.

Her involvement in educational activities has included her role as co-founder and co-director of the NCSU E-Commerce Studio. The Studio is a lab in which management and computer science graduate students collaborate in multi-disciplinary teams to develop Web-based e-commerce applications for industrial partners. In keeping with her research focus, students in the Studio are taught how to develop appropriate security and privacy policies as well as systems that are in compliance with those policies.

She has also been a leader in developing the Information Technology curriculum under the Business Management degree at NCSU. She has initiated, designed, and taught several courses at both the undergraduate and graduate levels.





Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...

Disclaimer

The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.