As mentioned in a previous article, there are some challenges in HIFIS 4 regarding the ability of users to keep track of who they're allowed to talk to about the client.

There's a Consent module in HIFIS which is really intended to keep track of whether the client has consented for you to store their data in HIFIS. This is a bit of a weird assumption for some communities, who point out that it could be potentially redundant. If staff are well trained and they're getting informed consent from al…

Data sharing is great, but it's also hard to balance the need to protect clients' privacy against the potential benefits of an open system. And it's even harder to figure out the right language to communicate with staff, so that they're comfortable with the consent conversations they need to have with their clients. 

The Region of Waterloo did a great job of making a short (5-minute) video that they use to train their staff about privacy and consent in the context of HIFIS 4.

One of the pillars of protecting client information is making sure that the only people accessing a client's information are the people that need that information to be able to serve the client.  A previous article discussed limiting user access to files via attestation, but that's not the only tool in your toolbox.

Service Provider Visibility Settings 

A shelter that only serves adult men does not need to be able to access client files for women and children, and they probably don't need to a…

Attestation

Transcription: