Method Article

Hospital Medical Equipment Data Security Governance: A Grounded Theory Informed Data Lifecycle and Governance Matrix Protocol

DOI:

10.3791/69835

April 3rd, 2026

In This Article

Summary

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

This protocol presents a grounded theory-informed matrix workflow mapping six data lifecycle stages to six governance domains to audit and improve hospital medical equipment data security. Based on evidence, artifacts, and 48 stakeholder interviews across 14 hospitals, it generates heat maps and prioritized actions for iterative governance improvement.

Abstract

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

This article describes a reproducible governance protocol for hospital medical equipment data security grounded in qualitative evidence. From August to October 2024, we conducted semi-structured interviews with 48 stakeholders across 14 tertiary public hospitals in S City. Transcripts were analyzed using grounded theory procedures (Strauss and Corbin: open, axial, and selective coding), yielding 360 reference points, 149 initial concepts, 39 categories, 27 main categories, and 7 core categories. Building on the National Health Commission of the People's Republic of China's safety and quality management agenda and adopting the SQ (I SPORT) matrix logic as an organizing scaffold, we developed a Medical equipment data security audit and tracking protocol based on grounded theory (M-ATSSPD). The protocol operationalizes a matrix that maps six data lifecycle stages (Acquisition, Transmission, Storage, Sharing, Processing, and Disposal) to six governance domains (Organization and Personnel, Metadata, Compliance and Policies, Monitoring and Audit, Incident Response, and Technical Tooling). It specifies scoring anchors (0-3), evidence mapping rules, and heat map visualization to identify high-risk cells, prioritize corrective actions, and support iterative improvement without vendor dependence. The protocol further defines cell-level ownership and documentation requirements to strengthen cross-departmental coordination, compliance readiness, and incident preparedness, and provides guidance for transferability across public hospital settings.

Introduction

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

With the acceleration of hospital informatization and the rise of smart healthcare, medical equipment has become increasingly networked and interoperable, making equipment-generated data a core asset for clinical decision-making and hospital operations1. These data may include personally identifiable information, device operational logs, and diagnostic outputs such as physiological parameters, imaging objects, and treatment records, which are closely linked to patient privacy and care quality2. Security incidents involving such data can directly affect patient safety and trust in clinical services3

Access restricted. Please log in or start a trial to view this content.

Protocol

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

1. Ethical approval and informed consent procedures

  1. Obtain approval from an institutional review board before recruitment.
  2. Provide each participant with an information sheet describing study aims, recording procedures, confidentiality protections, and withdrawal rights, and obtain written informed consent before conducting any interview.
  3. Record interviews only after receiving explicit permission.
  4. Transcribe recordings verbatim and de-identify transcripts by removing names, phone numbers, and site-specific identifiers.
  5. Store audio files, transcripts, and consent forms in an access-controlled repositor....

Access restricted. Please log in or start a trial to view this content.

Results

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

Guided by grounded theory, evidence from the screened literature and the interview corpus was synthesized to derive a model of factors influencing hospital medical-equipment data security. Three-level coding (open, axial, and selective) was performed, and the analytic workflow is summarized below30.

Open coding
Source texts were examined line by line, retaining verbatim phrasing to preserve meaning and context. Meaning units were coded into sub-node.......

Access restricted. Please log in or start a trial to view this content.

Discussion

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

This protocol operationalizes hospital medical-equipment data-security governance as a traceable, evidence-based workflow linking grounded theory outputs to a 6 × 6 maturity matrix and an action-and-verification loop. The SQ (M-ATSSPD) matrix was derived by integrating interview and literature evidence into stable categories and translating them into lifecycle stages (Acquisition, Transmission, Storage, Sharing, Processing, and Disposal) and governance domains (Organization and Personnel, Metadata, Compliance and Po.......

Access restricted. Please log in or start a trial to view this content.

Disclosures

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

The authors have no conflict of interest to disclose.

Acknowledgements

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,

This work was supported by the 2024 Medical Engineering Research Project of the Institute of Hospital Management, National Health Commission of the People's Republic of China (2024MEB115), and the 2024 Health Economics and Management Research Project of Jiangsu Provincial Health Commission (CW202407).

....

Access restricted. Please log in or start a trial to view this content.

Materials

List of materials used in this article
NameCompanyCatalog NumberComments
Qualitative analysis software (MAXQDA 24)VERBI Software GmbH (Berlin, Germany)N/A (License-based; order/serial in invoice)Used for literature content analysis and coding; export codebook/coded segments/memos and archive with version numbers.
Statistical computing software (R v4.3.2)R Foundation for Statistical Computing (Vienna, Austria)N/A (Open-source)Used for Cohen’s κ, Wilson CI, and statistical comparisons; archive scripts and outputs.
R package “irr” (κ calculation)Comprehensive R Archive Network (CRAN)N/A (Open-source)Used for Cohen’s κ (e.g., kappa2); record package version used.
Spreadsheet software (Microsoft Excel / Microsoft 365 Excel)Microsoft Corporation (Redmond, WA, USA)N/A (License-based)Used for weighted scoring formulas and conditional-format heat map; archive workbook and rule settings.
Reference-management software (choose one: EndNote or Zotero)Clarivate (EndNote) / ZoteroN/A (License-based/Open-source)Used for exporting citations and deduplication; archive deduplication log.
China National Knowledge Infrastructure (CNKI)CNKI (Tsinghua Tongfang)N/A (Online subscription)Literature retrieval database; record exact query, filters, and export format in search log.
IEEE XploreIEEEN/A (Online subscription)Literature retrieval database; record exact query, filters, and export format in search log.
Mixed Methods Appraisal Tool (MMAT, 2018)MMAT authors (Hong et al.)N/AQuality appraisal tool for mixed-methods studies; archive completed appraisal table.
CASP Qualitative Checklist (latest version used)Critical Appraisal Skills Programme (CASP)N/AQuality appraisal checklist for qualitative-only studies; archive completed appraisal table.
Secure, access-controlled repository (encrypted storage)Institutional IT / compliant cloud / on-premN/AStore audio, transcripts, consent forms, scripts, matrices, heat maps, and audit trails with role-based permissions.
Audio recorder (digital recorder or smartphone)Any equivalentN/ARecord interviews with permission; model optional if a specific device was used.
Computer workstationAny equivalentN/AUsed for coding, scoring, analysis, and archiving.
Transcription tool/workflowAny equivalentN/AVerbatim transcription + de-identification; keep workflow secure.
De-identification tag templateSelf-preparedN/AStandard tags for removing identifiers in transcripts.
Participant information sheet + consent formSelf-preparedN/ARequired for informed consent and confidentiality protections.
Screening table templateSelf-preparedN/ARecord inclusion/exclusion decisions and reasons.
Evidence artifact registerSelf-preparedN/ARegister artifacts (A–I) with IDs =, owners, dates, and locations.
Matrix workbook template (6 × 6)Self-prepared (spreadsheet)N/AContains indicators, weights, formulas, cell scores, and documentation fields.
Heat-map rule set documentationSelf-prepared (export/screenshot)N/AStore conditional-format thresholds and absolute comparability settings.
Action register templateSelf-preparedN/ARecord prioritized cells, owners, deadlines, verification metrics, and closure evidence.
Coding decision log + versioned codebookSelf-prepared / exportedN/ARecord retain/merge/split decisions and codebook versioning after adjudication.
Analytic trace packageSelf-prepared / exportedN/ACoded excerpts, memos, diagrams enabling traceable grounded-theory transparency.

References

Loading...
$$\rightleftharpoonup{xx}$$ $$\longleftharp{xx}$$, $$\longrightharp{xx}$$,
  1. Goldman, J. M., Weininger, S., Jaffe, M. B. Applying Medical Device Informatics to Enable Safe and Secure Interoperable Systems: Medical Device Interface Data Sheets. Anesth Analg. 131 (3), 969-976 (2020).
  2. Seh, A. H., et al.

Access restricted. Please log in or start a trial to view this content.

Reprints and Permissions

Request permission to reuse the text or figures of this JoVE article

Request Permission

Tags

Medical Equipment DataData Security GovernanceHospital Data SecurityData LifecycleGovernance MatrixGrounded TheoryData Audit ProtocolCompliance PoliciesIncident ResponseCross Departmental Coordination

Related Articles