Advanced search
Publication Cover
European Journal of Information Systems Volume 32, 2023 - Issue 6
Submit an article Journal homepage
1,020
Views
1
CrossRef citations to date
0
Altmetric
Research Article

Balancing information privacy and operational utility in healthcare: proposing a privacy impact assessment (PIA) framework

Rachida F Parksa Computer Information Systems, Quinnipiac University, Hamden, Quinnipiac, USACorrespondence[email protected]
,
Rolf T Wigandb Emeritus College at Arizona State University, Scottsdale, Arizona, USA
&
Paul Benjamin Lowryc Pamplin College of Business Department of Business Information Technology, Virginia Polytechnic Institute and State University, Blacksburg, Virginia, USAORCID Iconhttps://orcid.org/0000-0002-0187-5808
ORCID Icon
Pages 1052-1069 | Received 31 May 2019, Accepted 05 Jul 2022, Published online: 02 Aug 2022
 
Sample our Economics, Finance,Business & Industry journals, sign in here to start your access, latest two full volumes FREE to you for 14 days

ABSTRACT

One needs to look only at recent data breaches to be reminded of the severe and far-reaching damage caused by privacy threats. In light of these threats, global healthcare leaders are striving to understand how to protect patient information without the loss of benefits (utility) that results from privacy-preserving mechanisms. Consequently, our study examines the relatively unexplored issue of simultaneously responding to information privacy threats and maintaining utility in a healthcare privacy compliance context. Counterintuitively, we also identify a symbiotic relationship between these two focal and interdependent efforts. We adopt an interpretive qualitative research method leveraging the value-focused thinking (VFT) approach which results in two major contributions: (1) the development of a value-driven framework presented as a means-end objective network providing a list of 16 means objectives and seven key fundamental objectives enabling higher-quality privacy decision making vis-à-vis privacy and utility. Our second and central contribution (2) is a theoretical framework of privacy impact assessment (PIA) emphasising the interplay and balance between making appropriate decisions in responding to information privacy while not hindering healthcare operations. This work provides the foundation for proposing four compelling propositions for future healthcare privacy research.

Acknowledgement

Rachida Parks and Paul Benjamin Lowry dedicate this study in the loving memory of Rolf Wigand who was a great friend and collaborator.

Disclosure statement

No potential conflict of interest was reported by the author(s).

Supplementary material

Supplemental data for this article can be accessed online at https://doi.org/10.1080/0960085X.2022.2103044

Reprints and Corporate Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

To request a reprint or corporate permissions for this article, please click on the relevant link below:

Order Reprints Request Corporate Permissions

Academic Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

Obtain permissions instantly via Rightslink by clicking on the button below:

Request Academic Permissions

If you are unable to obtain permissions via Rightslink, please complete and submit this Permissions form. For more information, please visit our Permissions help page.

Related research

People also read lists articles that other readers of this article have read.

Recommended articles lists articles that we recommend and is powered by our AI driven recommendation engine.

Cited by lists all citing articles based on Crossref citations.
Articles with the Crossref icon will open in a new tab.