The purpose of this policy is to define the
County of York's expectation that employees will maintain the privacy
and security of confidential information obtained in the course of
employment.
County of York employees shall maintain the
privacy and security of confidential information created, used, maintained
or learned in any manner in the course of employment. County employees
are prohibited from disclosing or discussing with a third party any
confidential information unless County business reasons make it necessary;
the use or disclosure of protected health information as defined by
HIPAA is permitted or required as described in the County's Notices
of Privacy Practices; or there is a written court order for the disclosure.
The responsibility for confidentiality extends outside York County
offices and property, outside of normal work hours and continues after
the end of employment with the County.
As used in this article, the following terms
shall have the meanings indicated:
BUSINESS REASONS
Necessary for the effective functioning of a department,
agency or business operation to accomplish its business purpose.
FORMAT
The manner in which information is maintained such as oral,
written or electronic.
HIPAA
The Health Insurance Portability and Accountability Act of
1996.
PRIVATE
Kept from others; not for public use or participation.
SECURE
To keep safe and free from harm, risk or loss.
THIRD PARTY
Any person or party other than the employee, including another
employee.
Employees who violate the County's Confidentiality
Policy may be subject to disciplinary action as described in the Employee
Handbook.