How to Maintain Confidentiality

Download Article

METHODS

1Protecting Confidential Information

2Complying with Privacy Laws

3Securing Electronic Information

OTHER SECTIONS

References

Co-authored by wikiHow Staff

Last Updated: October 20, 2020 References

Whether you’re an entrepreneur or an educator, protecting sensitive information is a priority. For some industries, such as healthcare, there are strict laws and ethical codes that govern private information. Since private information is routinely stored electronically, any conversation on confidentiality must cover cybersecurity. While codes, laws, and technology are complex topics, the foundation of confidentiality is simple: awareness. Always be conscious of your actions, aware of your surroundings, and informed about your responsibilities.

Method1

Protecting Confidential InformationDownload Article

1
Handle private documents carefully. Don’t leave private documents unattended, whether you’re a nurse, lawyer, or an employee handling your company’s confidential material. Remain aware of where the materials are and who can access them. When disposing of confidential documents, do not merely use a single paper shredder, as the shredded paper can be re-integrated. Try to shuffle the documents and then process documents at several paper shredders. If you tend to destroy confidential documents in bulk, contact confidential recycling company on site.[1]
- For example, if you’re a healthcare professional, don’t leave a patient’s medical records unattended on a cafeteria table or in a reception area.
2
Lock file rooms, cabinets, and other storage spaces. In addition to securely storing confidential materials, ensure they’re protected from damage. For instance, irreplaceable vital documents should be stored in fireproof, waterproof safes or cabinets.[2]
- When you leave a secure room, make sure drawers, cabinets, and doors are locked. To avoid accidental breaches, get in the habit of double checking every handle before you walk away from a storage unit or door.
3
Use discretion when discussing confidential information. Always be aware of your surroundings whenever you talk about private information. Discuss sensitive information in a private setting, and make sure only authorized personnel are within earshot.[3]
- When you have to confer with a colleague about a patient or client, discuss only the necessary details. Depending on your location and industry, you might be legally required to withhold or change any identifying information.
- If a client or patient calls you, head to a private location to talk. Unless it’s an emergency, avoid discussing confidential over the phone. Discuss scheduling issues over the phone, for example, but save sensitive information for a face-to-face conversation.[4]
4
Protect intellectual property with confidentiality agreements. Regardless of your role or industry, you’ll most likely sign a non-disclosure agreement at some point in your professional career. Always read any contract carefully before agreeing to its terms.[5]
- If you’re an employee, make sure you understand terms such as using your company’s intellectual property within certain bounds or not discussing operations with family and friends. Report to your manager if you need to access to confidential documents, if necessary.
- If you operate a business, you’ll want to secure any confidential information you need to exchange during transactions, negotiations, and other occasions. For instance, if you’re presenting an invention to a potential investor, it’s wise to have your lawyer draft a non-disclosure agreement to ensure your intellectual property won’t be used without your consent.

Method2

Complying with Privacy LawsDownload Article

1
Familiarize yourself with your specific legal and ethical requirements. From healthcare professionals to educators, each profession has its own ethics codes on confidentiality. Furthermore, laws that govern confidentiality vary by location, and industries are regulated in different ways.[6]
- While ethical and legal obligations can get complicated, not knowing them won’t be an excuse if you accidentally breach them. Your employer or professional organization should provide resources on ethical and legal compliance.
- If you’re not sure about a situation that could lead to a potential ethical or legal pitfall, don’t do anything without doing your homework. Consult your profession’s code of ethics, look up applicable local or federal laws, get advice from a trusted colleague (without disclosing private information), or contact your professional organization.
2
Inform clients and patients how their information is used. If you handle confidential information for a client or patient, you’re most likely ethically or legally bound to make sure they understand their privacy rights. Tell them what information is recorded, how it’s stored and for how long, and how it’s used.[7]
- Ask them if they have any questions about how information such as medical or legal records are stored and used.
- Additionally, inform them of the limitations of their right to privacy. For instance, if you’re a therapist, inform your patient that you’re obligated to report if they threaten to harm themselves or others.
3
Comply with the more stringent law when 2 privacy laws interact. When 2 laws interact, 1 takes precedence over the other. In general, comply with the law that offers stricter privacy protections for a patient or client.[8]
- Suppose you’re a psychologist in New Hampshire and you’ve received a subpoena requesting information about a patient. New Hampshire (NH) state law and the Health Insurance Portability and Accountability Act (HIPAA) both govern how providers handle patient records, but vary when it comes to disclosing patient records to legal authorities.
- Since NH law requires a court order or patient consent, rather than a subpoena alone, it offers stricter protection than HIPAA. In this case, you’d be breaking the law if you complied with the subpoena.
4
Discuss legal compliance with any third-party associates. Make sure any other entities that you do business with understand privacy laws that regulate your industry. Check their history of compliance, and steer clear if you find any violations in their history.[9]
- For instance, suppose you’re a doctor or counselor running a private practice. Research all associates you hire or services you retain, including billing specialists, medical staff, insurers, labs, and internet service providers. If someone on staff or a service you use mishandles confidential information, your practice could lose its reputation and suffer legal consequences.
5
Obey mandatory reporting laws. Sometimes, you’re legally obligated to disclose information that would otherwise be confidential. For instance, if you’re a healthcare professional, you’re required to contact the authorities if a patient tells you they plan on harming themselves or others. Failure to do so could land you in legal trouble and jeopardize your professional certification.[10]
- Additionally, patient or client records might be requested by subpoena, court order, or warrant. If necessary, disclose only the information specified in the legal demand. For instance, if a court order requests information about a specific injury, don’t disclose records about an illness they had as a child.
- Keep in mind that attorney-client privilege takes precedence over legal demands, such as a discovery request or ordering a lawyer to testify under oath.[11]

Method3

Securing Electronic InformationDownload Article

1
Install and update antivirus and anti-malware software. The first step to safeguarding electronic data is to keep your antivirus software updated. If it’s not updated, you’re not protected from the latest online threats.[12]
- Additionally, make sure you and anyone you work with use the internet safely. For instance, don’t click on suspicious links or open email attachments from unknown senders.
2
Position screens that display personal information strategically. More data is compromised due to shoulder surfing than computer viruses, but it’s an often overlooked aspect of cybersecurity.[13] Make sure monitors, computer screens, and other devices that display confidential information are visible only to authorized personnel.[14]
- For example, if you own a small restaurant, don’t leave your laptop open on the bar with your financial information visible. If you’re a doctor, make sure patients can’t see screens that display personal information from the waiting area or reception desk.
- It’s also wise to use privacy screen savers and password-protected lock screens.
3
Verify a recipient’s information before sending private documents. Always make sure you’ve correctly entered an email address or fax number before sending any documents that contain sensitive information. If think you might have a letter or number wrong, call the recipient to verify their contact information.[15]
- Additionally, review your industry’s code of ethics and local laws to make sure you’re allowed to send a given confidential document.
4
Encrypt private electronic data whenever possible. Even if you’re not legally required to encrypt electronic data and communications, you should still consider it. Look into hiring an IT security specialist to develop a secure portal through which you can communicate with patients or clients.[16]
- If you’re a member of a professional organization, they might partner with a company that specializes in secure communications for your industry. You might be able to hire that company at a discounted rate.

Community Q&A

Add New Question

Ask a Question

200 characters left

Include your email address to get a message when this question is answered.

Submit

TipsSubmit a Tip

All tip submissions are carefully reviewed before being published

3 Ways to Maintain Confidentiality - wikiHow

Related Topic

How to Maintain Confidentiality

Related wikiHows

References

About This Article

Related Articles

Comments

Related Posts