Implementation Gap Analysis of National Electronic Health Record (EHR) Data Security Standards in Primary Healthcare Facilities

Authors

  • Destri Maya Rani Politeknik Bina Trada Semarang
  • Windatania Mayasari STIKES Maluku Husada
  • Riska Faraswati Stikes Hafshawaty
  • Dafrosa Luni Universitas Karya Dharma Kupang
  • Nikmatul Firdaus Universitas Kadiri

DOI:

https://doi.org/10.69855/rekammedis.v1i2.304

Keywords:

Electronic Health Records, Data Security, Implementation Gap, Primary Healthcare, Cybersecurity Training, Indonesia

Abstract

This study examines the gap between national Electronic Health Record (EHR) data security standards, established by Minister of Health Regulation No. 24 of 2022, and their implementation in Indonesia’s primary healthcare facilities. Secondary data from the Ministry of Health, BSSN, and BPJS Kesehatan (2020–2025) reveal compliance rates of 55%–70%, with significant regional disparities linked to infrastructure and staff training deficiencies. Regression analysis shows staff training intensity (β = 0.54, p = .001) and infrastructure quality (β = 0.47, p = .005) as key predictors, explaining 72% of compliance differences. The findings highlight challenges in technology, human resources, and governance. Urgent integration of technological upgrades and continuous role-based cybersecurity training is recommended to enhance accountability and secure the digital health ecosystem. These insights inform national policy for standardized cybersecurity practices.

References

Adams, J., & Whittemore, R. (2021). Healthcare information security and privacy (3rd ed., pp. 45–68). Springer.

Alharthi, H., Mayhew, P., & Massey, K. (2023). Healthcare staff cybersecurity awareness: A systematic review. International Journal of Medical Informatics, 155, 104656. https://doi.org/10.1016/j.ijmedinf.2021.104656

Alves, M. T. S., Fernandes, L. M., & Francisco, C. M. K. (2023). Barriers and facilitators to the adoption of electronic health records: A systematic review in low- and middle-income countries. Health Policy and Technology, 12, 100631. https://doi.org/10.1016/j.hlpt.2022.100631

Ardianto, D., & Nurjanah, S. (2024). Challenges in implementing digital health in primary care (pp. 123–156). Universitas Indonesia Press.

Boonstra, A., & Broekhuis, M. (2014). Barriers to the acceptance of electronic medical records by physicians: From systematic review to taxonomy and interventions. BMC Health Services Research, 14, 370. https://doi.org/10.1186/1472-6963-14-370

Braithwaite, J., Testa, L., Westbrook, J. I., & Iedema, R. (2020). Governance challenges in public health technologies: The need for adaptable leadership. BMJ Global Health, 5, e002748. https://doi.org/10.1136/bmjgh-2020-002748

Dinev, T., & Hu, Q. (2007). The centrality of awareness in the formation of user behavioral intention toward protective information technologies. Journal of the Association for Information Systems, 8, 386–408. https://doi.org/10.17705/1jais.00122

Hanggara, B. (2024). Information security management in healthcare (pp. 45–75). Prenadamedia Group.

Hendrata, W. M. (2025). Legal protection of patients' confidentiality in the era of electronic medical records. Jurnal Pranata, 22, 45–60.

Ikawati, F., Suryanto, T., & Hanggara, B. (2024). Data protection protocols in primary healthcare facilities (pp. 200–230). Airlangga University Press.

Kementerian Kesehatan Republik Indonesia. (2022). Peraturan Menteri Kesehatan Republik Indonesia Nomor 24 Tahun 2022 tentang Standar Rekam Medis Elektronik. Jakarta, Indonesia.

Keshvardoost, S., Bahaadinbeigy, K., & Fatehi, F. (2022). The impact of information and communication technology on healthcare: An overview of systematic reviews and meta-analyses. International Journal of Medical Informatics, 161, 104733. https://doi.org/10.1016/j.ijmedinf.2022.104733

Manca, D., Bendotti, S., & De Cia, G. (2021). Healthcare cybersecurity: A systematic review of literature. Healthcare, 9, 190. https://doi.org/10.3390/healthcare9020190

Prgomet, M., Georgiou, A., & Westbrook, J. I. (2019). The impact of electronic health record systems on patient safety and quality of care: A systematic review and synthesis of evidence. Journal of the American Medical Informatics Association, 26, 856–863. https://doi.org/10.1093/jamia/ocz155

Soeranto, E., Wijaya, T., & Hartati, S. (2023). Gap analysis of electronic health record implementation in Indonesia (pp. 34–72). Universitas Diponegoro Press.

Vitamin, S. (2025). Interoperability and data security in health information systems (pp. 90–118). Springer.

Downloads

Published

2025-12-18

How to Cite

Destri Maya Rani, Windatania Mayasari, Riska Faraswati, Dafrosa Luni, & Nikmatul Firdaus. (2025). Implementation Gap Analysis of National Electronic Health Record (EHR) Data Security Standards in Primary Healthcare Facilities. Research and Evidence on Knowledge in Administration and Management — Medical Electronic Data and Information Systems, 1(2), 56–68. https://doi.org/10.69855/rekammedis.v1i2.304

Issue

Vol. 1 No. 2 (2025): September, 2025

Section

Articles

License

Copyright (c) 2025 Research and Evidence on Knowledge in Administration and Management — Medical Electronic Data and Information Systems (REKAM MEDIS)

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.