×

System and method for providing multi-layered access control

  • US 10,726,148 B2
  • Filed: 08/19/2015
  • Issued: 07/28/2020
  • Est. Priority Date: 08/19/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method to provide permissions for users from different organizations to access health information of cohort members while assuring privacy and security of the cohort members'"'"' health information deposited in a plurality of datasets having different commercial owners who control the access to the datasets they own, wherein the access is achieved via computing devices having a hardware processor communicatively connected to the plurality of datasets via a network, the method comprising the steps of:

  • defining, by the processor,an information policy including permissions set by the different commercial owners of each of the plurality of datasets for access to the health information and granularity of the health information in each of the plurality of the datasets,an organization policy including permissions derived from a plurality of licenses subscribed to by the respective organizations for accessing each of the plurality of datasets, anda user policy including account permissions selectively assigned to the users from each of the different organizations;

    generating a master policy having access control permissions for access to each of the plurality of datasets for each of the users from each of the different organizations, wherein the master policy comprises the information policy, organization policy, and the user policy; and

    in response to a request from the computing device of the users;

    controlling, by the processor, access to the health information of the cohort members in the plurality of datasets based on the access control permissions of the master policy.

View all claims
  • 8 Assignments
Timeline View
Assignment View
    ×
    ×