Client-centric e-health system and method with applications to long-term health and community care consumers, insurers, and regulators
First Claim
1. A method for accessing personal health records of a patient, stored in relational databases of a patient-centric system containing comprehensive records of multiple patients with each patient'"'"'s records incorporating many different data categories and functions including manual or automated data exchange, consolidation, storage, routing and transmission, consistent with consent directives assigned to authorized users and computer systems of authorized users by the patient or designated representative thereof for defining privileges of access in each of said data categories and functions for each authorized user within the patients records, comprising the steps of:
- storing consent directives assigned by the patient or designated representative thereof in each of the patient'"'"'s records defining for each authorized user privileges selected from the group comprising;
selective data viewing, entry, updating, consolidating, archiving, metatagging, import and export;
employing programming logic residing in the patient centric system to enforce access to patients records and to data categories and data functions within patient'"'"'s records in accordance with the consent directives assigned to each authorized user;
encrypting patient'"'"'s records upon storage in the relational databases and/or during transmission permitting said programming logic to enforce access to the patient'"'"'s records consistent with assigned consent directives and to deny access to unauthorized users;
assigning unique identifiers to authorized users recognizable by said programming logic to enable encrypted patient records to be decrypted only by authorized users and consistent only with assigned consent directives; and
employing user interfaces to provide access to all patients and designated representatives thereof to the stored consent directives in their own records for enabling the patients and designated represented thereof to continuously monitor and modify assigned privileges in the patient'"'"'s records and to withdraw the current privileges and/or initiate newly authorized privileges.
1 Assignment
0 Petitions
Accused Products
Abstract
A patient-centric system and method for accessing personal health records of a patient, stored in relational databases and containing comprehensive records of multiple patients with each patient'"'"'s records incorporating many different data categories and functions including manual or automated data exchange, consolidation, storage, routing and transmission, consistent with consent directives assigned to authorized users and computer systems of authorized users by the patient or designated representative thereof. The consent directives define privileges of access in each of said data categories and functions within the patients records. The patients records are stored in relational databases hosted by Web servers on a computer network through which the authorized users interact under the control of programming logic consistent with the consent directives assigned by the patient or designated representative thereof.
248 Citations
17 Claims
-
1. A method for accessing personal health records of a patient, stored in relational databases of a patient-centric system containing comprehensive records of multiple patients with each patient'"'"'s records incorporating many different data categories and functions including manual or automated data exchange, consolidation, storage, routing and transmission, consistent with consent directives assigned to authorized users and computer systems of authorized users by the patient or designated representative thereof for defining privileges of access in each of said data categories and functions for each authorized user within the patients records, comprising the steps of:
-
storing consent directives assigned by the patient or designated representative thereof in each of the patient'"'"'s records defining for each authorized user privileges selected from the group comprising;
selective data viewing, entry, updating, consolidating, archiving, metatagging, import and export;employing programming logic residing in the patient centric system to enforce access to patients records and to data categories and data functions within patient'"'"'s records in accordance with the consent directives assigned to each authorized user; encrypting patient'"'"'s records upon storage in the relational databases and/or during transmission permitting said programming logic to enforce access to the patient'"'"'s records consistent with assigned consent directives and to deny access to unauthorized users; assigning unique identifiers to authorized users recognizable by said programming logic to enable encrypted patient records to be decrypted only by authorized users and consistent only with assigned consent directives; and employing user interfaces to provide access to all patients and designated representatives thereof to the stored consent directives in their own records for enabling the patients and designated represented thereof to continuously monitor and modify assigned privileges in the patient'"'"'s records and to withdraw the current privileges and/or initiate newly authorized privileges.
-
- 2. A method as defined in claim 2 wherein said programming logic enforces the exchange of information between authorized users relative to patient records for different patients consistent with patients consent directives for each authorized user and prohibits the transmission of data from patient records in the patient centric system to unauthorized users and from authorized used to unauthorized users.
- 3. A method as defined in claim 3 wherein programming logic limits downloading of data and documents only to authorized users while prohibiting the transmission of such data and documents from said authorized users to unauthorized users.
-
12. A patient-centric system for providing patients and authorized users access to patients records incorporating many different data categories and functions including manual or automated data exchange, consolidation, storage, routing and transmission, with the patients records being stored in relational databases hosted by Web servers on a computer network through which the authorized users interact under the control of programming logic consistent with consent directives, located in the patients records and assigned by the patient or designated representative thereof, defining privileges of access in each of said data categories and functions within the patients records to each authorized user, comprising:
-
a multi-tier system for separating the records of each patient into a multiple number of different data categories, functions and subsets thereof corresponding to multiple data elements representative of different fields of patient information; software means in the programming logic for enforcing access to patients records and to data categories and data functions within patient'"'"'s records in accordance with the consent directives assigned to each authorized user by the patient or designated representative thereof with the consent directives defining privileges selected from the group comprising;
selective data viewing, entry, updating, consolidating, archiving, metatagging, import and export;software means in the programming logic for encrypting patient'"'"'s records upon storage in the relational databases and/or during transmission permitting said programming logic to enforce access to the patient'"'"'s records consistent with assigned consent directives and to deny access to unauthorized users; unique identifiers for each authorized users recognizable by said programming logic to enable encrypted patient records to be decrypted only by authorized users consistent with consent directives assigned to such authorized users; and user interfaces for providing access in real time to all patients and designated representatives thereof to the consent directives within their own patient records for enabling the patients and designated representative thereof to continuously monitor and modify assigned privileges in the patient'"'"'s records and to withdraw current privileges and/or initiate newly authorized privileges.
-
- 14. - A patient-centric system as defined in claim 13 wherein said programming logic through said encryption enforces the exchange of information between authorized users relative to patient records for different patients consistent with patients consent directives for each authorized user and prohibits the transmission of data from patient records in the patient centric system to unauthorized users and from authorized used to unauthorized users.
Specification