Checkbook to control access to health record bank account
First Claim
1. A computer-implemented method of controlling access to a plurality of electronic medical records related to a plurality of individuals, comprising:
- configuring a network-accessible storage repository to store the plurality of electronic medical records, wherein the electronic records for a given individual are associated with an electronic health records account (EHR account);
providing the individual with at least one portable, EHR account access device, wherein the access device includes a predefined authorization key that authorizes a plurality of requesting entities with access to the EHR account when presented with the access device;
receiving, over a data-communications network, a request from one of the requesting entities, wherein the request includes at least one transaction to be processed, the predefined authorization key from the access device given to the requesting entity by the individual, and a predefined requestor identification identifying the requesting entity, wherein the access device authorizes the entity presented with the access device to (i) perform a deposit transaction, wherein the deposit transaction submits additional electronic records associated with the individual stored in the network-accessible storage repository or (ii) to retrieve electronic records associated with the individual from the network-accessible repository;
authorizing the request based on both the predefined authorization key and the predefined requestor identification key;
performing the at least one transaction included in the request by use of one or more computer processors for the EHR account;
for each record accessed by one of the requesting entities, generating a report, wherein the generated report includes a listing of requests to access records associated with the individual and the respective requestor identification for each request; and
providing the reports to the individual.
2 Assignments
0 Petitions
Accused Products
Abstract
A method, apparatus, and article of manufacture for controlling access to electronic health records associated with an individual are provided. Individuals are provided with an electronic health records account (EHR account), wherein the EHR account is available to store electronic health records associated with the individual, in a network accessible storage repository. Additionally, an individual may be provided with plurality of disposable access devices, wherein the access devices may be presented to an entity. In turn, the entity may access the individual'"'"'s EHR account, based on a predefined authorization specified for a particular access device.
37 Citations
22 Claims
-
1. A computer-implemented method of controlling access to a plurality of electronic medical records related to a plurality of individuals, comprising:
-
configuring a network-accessible storage repository to store the plurality of electronic medical records, wherein the electronic records for a given individual are associated with an electronic health records account (EHR account); providing the individual with at least one portable, EHR account access device, wherein the access device includes a predefined authorization key that authorizes a plurality of requesting entities with access to the EHR account when presented with the access device; receiving, over a data-communications network, a request from one of the requesting entities, wherein the request includes at least one transaction to be processed, the predefined authorization key from the access device given to the requesting entity by the individual, and a predefined requestor identification identifying the requesting entity, wherein the access device authorizes the entity presented with the access device to (i) perform a deposit transaction, wherein the deposit transaction submits additional electronic records associated with the individual stored in the network-accessible storage repository or (ii) to retrieve electronic records associated with the individual from the network-accessible repository; authorizing the request based on both the predefined authorization key and the predefined requestor identification key; performing the at least one transaction included in the request by use of one or more computer processors for the EHR account; for each record accessed by one of the requesting entities, generating a report, wherein the generated report includes a listing of requests to access records associated with the individual and the respective requestor identification for each request; and providing the reports to the individual. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A non-transitory computer-readable medium containing a program, which when executed by a processor performs operations for managing access to a plurality of electronic medical records related to a plurality of individuals, the operations comprising:
-
configuring a network-accessible storage repository to store the plurality of electronic medical records, wherein the electronic records for a given individual are associated with an electronic health records account (EHR account); providing the individual with at least one portable, transferable EHR account access device, wherein the access device includes a predefined authorization key that a plurality of requesting entities with access to the EHR account when presented with the access device; receiving, over a data-communications network, a request from one of the requesting entities, wherein the request includes at least one transaction to be processed, the predefined authorization key from the access device given to the requesting entity by the individual, and a predefined requestor identification identifying the requesting entity, wherein the access device authorizes the entity presented with the access device to (i) perform a deposit transaction, wherein the deposit transaction submits additional electronic records associated with the individual stored in the network-accessible storage repository or (ii) to retrieve electronic records associated with the individual from the network-accessible repository; authorizing, by operation of the processor, the request based on both the predefined authorization key and the predefined requestor identification key; performing, by operation of the processor, the at least one transaction for the EHR account; for each record accessed by one of the requesting entities, generating a report, wherein the generated report includes a listing of requests to access records associated with the individual and the respective requestor identification for each request; and providing the reports to the individual. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
Specification