Evaluasi Penggunaan Rekam Medis Elektronik (RME) dalam Peningkatan Keamanan Data Pasien di Puskesmas Haurwangi Kabupaten Cianjur

Yayan Ari Kurniawan; Rian Andriani; Yani Restiani Widjaja

doi:10.55606/klinik.v5i2.6465

Authors

Yayan Ari Kurniawan Universitas Adhirajasa Reswara Sanjaya
Rian Andriani Universitas Adhirajasa Reswara Sanjaya
Yani Restiani Widjaja Universitas Adhirajasa Reswara Sanjaya

DOI:

https://doi.org/10.55606/klinik.v5i2.6465

Keywords:

Data Security, Digital Health Transformation, Electronic Medical Records, ISO 27001:2022, Primary Health Care

Abstract

Digital transformation in the health sector has driven the adoption of Electronic Medical Records (EMR) as an innovative solution to replace manual record-keeping systems traditionally used by healthcare providers. The implementation of EMR in primary healthcare centers plays a strategic role, as it has the potential to improve service efficiency, enhance the quality of patient care, and support data integration across service units. Nevertheless, the adoption of EMR also presents new challenges, particularly related to patient data security and protection. This study aims to evaluate the use of Electronic Medical Records in enhancing patient data security at Haurwangi Public Health Center. The research employed a case study design with a descriptive qualitative approach. Data were collected through observation and in-depth interviews using the GAP Analysis: Status of ISO 27001 Implementation – Checklist instrument. The results indicate that the use of EMR at Haurwangi Public Health Center has supported data integration from patient registration to referral processes and facilitated the preparation of both internal and external reports. However, based on the GAP Analysis referring to the ISO 27001:2022 standard, patient data security requirements have not been fully met, resulting in potential risks of data breaches. Therefore, it is necessary to revise strategic policies in line with current regulations, enhance human resource competencies, implement comprehensive risk management, and conduct regular internal and external audits to strengthen information security based on the principles of Confidentiality, Integrity, and Availability (CIA Triad).

References

Abd El-Hamed, O. M., Abd El-Samie, F. E., Abd El-Atty, S. M., Hemdan, E. E.-D., & Badawy, W. (2023). Enhancement of electronic medical record (EMR) security in private networks with blockchains. Proceedings of the IEEE International Conference on Engineering and Emerging Multidisciplinary, 1–8. https://doi.org/10.1109/ICEEM58740.2023.10319566

Abdussamad, Z. (2021). Metode penelitian kualitatif. CV Syakir Media Press. https://doi.org/10.31219/osf.io/juwxn

Adafiah, M., Rohendi, A., & Andriani, R. (2023). Pengaruh pelayanan satuan darurat terhadap kepuasan pasien selama pandemi Covid-19 di Rumah Sakit Muhammadiyah Bandung. Jurnal Manajemen Rumah Sakit, 1(1), 23–41. https://doi.org/10.36080/jem.v13i1.2854

Adil, A., et al. (2023). Metode penelitian kuantitatif, kualitatif: Teori dan praktik. Get Press Indonesia.

Agustiany, I., Andriani, R., & Suwardhani, A. D. (2024). Efektivitas kualitas rekam medis elektronik dalam meningkatkan produktivitas dan manajemen keselamatan pasien: Studi kualitatif di RSIA Mutiara Putri Bandar Lampung. Intisari Sains Medis, 15(3), 1061–1064. https://doi.org/10.15562/ism.v15i3.2158

Asih, H. A., et al. (2024). Evaluasi keamanan data pasien pada rekam medis elektronik dengan systematic literature review. Jurnal Ilmiah FIFO, 16(2), 104–110. https://doi.org/10.22441/fifo.2024.v16i2.001

Azalia, Z., Ramadhaningrum, O., Nuranisa, S. S., Alya, P., & Kurnaesih, E. (2024). Penerapan prinsip etika pada penggunaan rekam medis elektronik. Jurnal Kesmas Untika Luwuk: Public Health Journal, 15, 1–10. https://doi.org/10.51888/phj.v15i2.284

Chazar, C., & Ramdhani, M. A. (2016). Model perencanaan keamanan sistem informasi menggunakan metode OCTAVE dan ISO 27001:2005. Seminar Nasional Telekomunikasi dan Informatika.

Cobrado, U. N., Sharief, S., Regahal, N. G., Zepka, E., Mamauag, M., & Velasco, L. C. (2024). Access control solutions in electronic health record systems: A systematic review. Informatics in Medicine Unlocked, 49, 101552. https://doi.org/10.1016/j.imu.2024.101552

Creswell, J. W., & Creswell, J. D. (2018). Research design: Qualitative, quantitative, and mixed methods approaches (5th ed.). Sage Publications.

Departemen Kesehatan Republik Indonesia. (2006). Pedoman penyelenggaraan dan prosedur rekam medis rumah sakit di Indonesia. Direktorat Jenderal Pelayanan Medik.

Dwi, L., Prabawati, M., Ikawati, F. R., & Afifah, L. (2023). Tinjauan keamanan data rekam medis elektronik di Puskesmas Jabung. Jurnal Vokasi, 4(2), 87–94.

Febriyana, V., & Ichwani, A. (2024). Keamanan data rekam medis elektronik menggunakan teknik kriptografi: Literature review. Jurnal Komputasi, 12(2), 165–175. https://doi.org/10.23960/komputasi.v12i2.276

Hermawan, A., Hartati, T., & Wijaya, Y. A. (2022). Analisis keamanan data melalui website Zahra Software menggunakan metode CIA triad. Jurnal Pengembangan IT, 7(3), 125–130. https://doi.org/10.30591/jpit.v7i3.3428

Ikhtiar, R. W., Hendry, Z., & Hidayat, R. (2023). Hubungan budaya kerja dengan kelengkapan data pelayanan pasien pada SIMKES Puskesmas Wajageseng. Jurnal Kesehatan Tropis Indonesia, 1(4), 1–6. https://doi.org/10.63265/jkti.v1i4.81

Innab, N. (2018). Availability, accessibility, privacy and safety issues facing electronic medical records. International Journal of Security, Privacy and Trust Management, 7(1), 1–10. https://doi.org/10.5121/ijsptm.2018.7101

ISO/IEC. (2022). ISO/IEC 27001:2022 information security management systems. ISO.

Kruse, C. S., Smith, B., Vanderlinden, H., & Nealand, A. (2017). Security techniques for the electronic health records. Journal of Medical Systems, 41(8), 127. https://doi.org/10.1007/s10916-017-0778-4

Musyarofah, R. S., & Bisma, R. A. (2020). Pembuatan SOP keamanan informasi berdasarkan ISO/IEC 27001 dan 27002. Journal of Emerging Information Systems and Business Intelligence, 1(1), 43–50.

Ononiwu, C. C., & Mgbeafulike, I. J. (2024). Maintaining integrity and confidentiality of patients’ records using an enhanced security technique. International Journal of Innovative Science and Research Technology, 1767–1773. https://doi.org/10.38124/ijisrt/IJISRT24OCT1787

Peraturan Menteri Kesehatan Republik Indonesia Nomor 19 Tahun 2015 tentang Pusat Kesehatan Masyarakat.

Peraturan Menteri Kesehatan Republik Indonesia Nomor 24 Tahun 2022 tentang Rekam Medis.

Puteri, D., Pramesti, A., Ayuningtyas, D., & Verdi, R. (2024). Keamanan dan kerahasiaan data medis pasien dalam implementasi rekam medis elektronik. PREPOTIF: Jurnal Kesehatan Masyarakat, 8, 7691–7702. https://doi.org/10.31004/prepotif.v8i3.38445

Putrawansyah, A., & Sutabri, T. (2024). Analisis keamanan aplikasi rekam medis elektronik menggunakan penetration testing. Router: Jurnal Teknik Informatika dan Terapan, 2(4). https://doi.org/10.62951/router.v2i4.268

Raharjo, B. (2019). Keamanan sistem informasi. Yayasan Prima Agus Teknik.

Rohman, H., Lauma, A. S., Pambudi, S. D., & Narendra, I. (2025). Evaluation of core security principles in electronic medical records. Procedia of Engineering and Life Science, 9, 43–51.

Setiatin, S., & Azmi, A. R. (2024). Analysis of patient data security aspects in EMR implementation at Hospital X Bandung. International Journal Prima Husada Health, 1(2), 173–180.

Setyaningrum, E., & Ricky, A. V. (2025). Analisis keamanan data pasien berdasarkan CIA triad di RSUD X Jawa Tengah. Jurnal Ners, 9, 4216–4221. https://doi.org/10.31004/jn.v9i3.46352

Siregar, R. A., & Sinaga, H. S. R. (2025). Aspek hukum perlindungan data pasien dalam penyelenggaraan RME di Indonesia. Jurnal Hukum To-Ra, 11(1), 106–116. https://doi.org/10.55809/tora.v11i1.433

Smitha, G. V., Ghorpade, A., Asthik, K., & Yadav, N. (2024). CryptoRecord: Advancing EMR security with blockchain technology. Proceedings of the ICOICI, 83–89. https://doi.org/10.1109/ICOICI62503.2024.10696021

Suhariyono, U. S., Ikawati, F. R., & Afifah, N. (2025). Analisis aspek keamanan informasi data pasien pada RME di UPT Puskesmas Karangploso. Jurnal Manajemen Informasi Kesehatan Indonesia, 13(1).

Terry, A. L., et al. (2019). A basic model for assessing primary health care EMR data quality. BMC Medical Informatics and Decision Making, 19(1), 30. https://doi.org/10.1186/s12911-019-0740-0

Wardani, E., Putra, D. H., Sonia, D., & Yulia, N. (2024). Keamanan sistem informasi RME di RS Islam Jakarta Sukapura. RAMMIK, 3(2), 31–38.

Zahirah, I., Putry, A. D., Cahyani, N., Della, A. R., & Dewi, A. P. (2025). Analisis keamanan autentikasi pengguna pada RME di Klinik Assalammedicare. Jurnal Rekam Medis dan Informasi Kesehatan, 4(2), 57–65.