Physicians can now use an online gaming method to learn how to protect electronic health information and avoid security breaches. The Office of the National Coordinator for Health IT has made available its first Web-based security training module.

“CyberSecure: Your Medical Practice”  uses a game format that requires users to respond to privacy and security challenges often faced in a typical small medical practice, according to ONC in a Sept. 12 announcement.

Users choosing the right response earn points and see their virtual medical practices flourish, but users making the wrong security decisions can hurt their virtual practices.

The use of gaming techniques by ONC is an innovative approach aimed at educating providers to make more informed decisions regarding privacy and security of health information.

ONC developed the security training module with the Regional Extension Center Program's privacy and security community of practice. Extension centers in every state bring technical assistance to physicians and small practices to adopt electronic health records (EHRs) and become meaningful users, including privacy and security procedures.

[See also: 5 reasons solo doc loves going digital]

The Health Insurance Portability and Accountability Act (HIPAA) established standards for the use and disclosure of personally identifiable health information and privacy rights for individuals.

In addition, to demonstrate meaningful use of EHRs providers must perform a security risk analysis or reassessment and correct any weaknesses identified during the risk analysis, and document any changes or corrections.

The security training module is one of many resources ONC provides, including a security risk assessment tool, a guide for physicians on evaluating security practices, a cyber-security checklist and HIPAA summary and guide.