Presentation is loading. Please wait.

Presentation is loading. Please wait.

REDCap and Vanderbilt’s Human Research Protection Program (VHRPP)

Published byDoris Pope Modified over 6 years ago

Similar presentations

Presentation on theme: "REDCap and Vanderbilt’s Human Research Protection Program (VHRPP)"— Presentation transcript:

1 REDCap and Vanderbilt’s Human Research Protection Program (VHRPP)

2 Overview of VHRPP uses for REDCap
What is important to the IRB in terms of data storage and security? Committees’ Charge with regard to protection of data and how REDCap impacts that role. Confidentiality issues surrounding data collection and the protection of that data. Routine collaboration between VHRPP and Office of Research Informatics involving other projects such as Dynamic Data Pull (DDP), E-Consent, Research Derivative (RD).

3 Why does VHRPP care about data storage and security?
VHRPP supports the work of the IRB and provides HRPP Oversight. VHRPP serves as the privacy board for research which means All research data should be used, stored, and/or disclosed according to HIPAA regulations. Adequate privacy measures to maintain confidentiality of research participants and their data.

4 How REDCap impacts the Committees’ reviews
Vanderbilt IRB Considerations REDCap Web application specifically designed to support data capture of research studies Allows users to build and manage online surveys/databases securely Compliance with HIPAA standards and 21 CFR Part 11 Password protected Secure Data storage

5 Unencrypted Laptops/Mobile Devices and potential consequences
Concentra Health Services Theft of an unencrypted laptop from their facility Encryption was in process but not complete. Concentra agreed to pay HHS Office of Civil Rights (OCR) $1,725,000 to settle potential violations and a corrective action plan. QCA Health Plan, Inc. Theft of unencrypted laptop containing ePHI of individuals stolen from staff member’s car. Lack of compliance with HIPAA privacy rule QCA agreed to pay $250,000 with ongoing compliance reporting and education for staff.

6 What could really happen to my research data?
VHRPP has received reports over the years of lost/stolen mobile devices. Flash drive dropped down an elevator shaft. Flash drive lost on a beach while researcher was on vacation. Stolen laptop that contained unencrypted data.

7 Ongoing collaboration for a number of other projects.
Committee Education when requested E-consent model developed with RSS and managed through REDCap. Dynamic Data Pull Research Derivative IRB Wizard Application

8 Sources (News: Stolen laptops lead to important HIPAA settlements, 2016) HRPP Policy X.A. and X.A.1.

9 Questions? For more information, contact our office at or visit our website at

Download ppt "REDCap and Vanderbilt’s Human Research Protection Program (VHRPP)"

Similar presentations

THE DEPARTMENT OF HEALTH AND HUMAN SERVICES (HHS) OFFICE FOR CIVIL RIGHTS (OCR) ENFORCES THE HIPAA PRIVACY, SECURITY, AND BREACH NOTIFICATION RULES HIPAA.

THE DEPARTMENT OF HEALTH AND HUMAN SERVICES (HHS) OFFICE FOR CIVIL RIGHTS (OCR) ENFORCES THE HIPAA PRIVACY, SECURITY, AND BREACH NOTIFICATION RULES HIPAA.
Ann Johnson IRB Administrator, IRB Member. Objectives 1. Identify the components necessary for management and oversight of tissue repositories used for.

Ann Johnson IRB Administrator, IRB Member. Objectives 1. Identify the components necessary for management and oversight of tissue repositories used for.
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,

What is HIPAA? This presentation was created by The University of Arizona Privacy Office, The Office for the Responsible Conduct of Research on March 5,
Key Changes to HIPAA from the Stimulus Bill (ARRA) Children’s Health System Department Leadership Meeting October 28, 2009 Kathleen Street Privacy Officer/Risk.

Key Changes to HIPAA from the Stimulus Bill (ARRA) Children’s Health System Department Leadership Meeting October 28, 2009 Kathleen Street Privacy Officer/Risk.
WHAT IS HIPAA? The Health Insurance Portability and Accountability Act of 1996 (HIPAA) provides certain protections for any of your health information.

WHAT IS HIPAA? The Health Insurance Portability and Accountability Act of 1996 (HIPAA) provides certain protections for any of your health information.
HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA)
Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.

Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.
HIPAA Regulations What do you need to know?.

HIPAA Regulations What do you need to know?.
HIPAA Security Risk Overview Lynne Shoemaker, RHIA, CHP, CHC OCHIN Integrity Officer Daniel M. Briley, CISSP, CIPP Summit Security Group.

HIPAA Security Risk Overview Lynne Shoemaker, RHIA, CHP, CHC OCHIN Integrity Officer Daniel M. Briley, CISSP, CIPP Summit Security Group.
The Institutional Review Board. What is an IRB? An IRB is committee set up by an institution to review, approve, and regulate research conducted under.

The Institutional Review Board. What is an IRB? An IRB is committee set up by an institution to review, approve, and regulate research conducted under.
Complying with Privacy to Enable Innovation & Research

Complying with Privacy to Enable Innovation & Research
Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.

Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.
Research Involving Human Subjects Review of Risk and Protection from Harm.

Research Involving Human Subjects Review of Risk and Protection from Harm.
CUMC IRB Investigator Meeting November 9, 2004 Research Use of Stored Data and Tissues.

CUMC IRB Investigator Meeting November 9, 2004 Research Use of Stored Data and Tissues.
Informed Consent and HIPAA Tim Noe Coordinating Center.

Informed Consent and HIPAA Tim Noe Coordinating Center.
Privacy vs. Confidentiality Presentation for IRB Members.

Privacy vs. Confidentiality Presentation for IRB Members.
2012 VA IRB Administrators Meeting Stephania H. Griffin, JD, RHIA, CIPP/G VHA Privacy Officer Director, Information Access and Privacy Privacy Officer.

2012 VA IRB Administrators Meeting Stephania H. Griffin, JD, RHIA, CIPP/G VHA Privacy Officer Director, Information Access and Privacy Privacy Officer.
1 HIPAA Security Overview Centers for Medicare & Medicaid Services (CMS)

1 HIPAA Security Overview Centers for Medicare & Medicaid Services (CMS)
Columbia University Medical Center Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy & Information Security Training 2009.

Columbia University Medical Center Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy & Information Security Training 2009.

Similar presentations

Ads by Google