Managing patient consent in a master patient index
First Claim
1. A computer-implemented method executed on one or more processors for managing patient consent, the method comprising:
- receiving, with the one or more processors, private patient information associated with a health care information system of a provider;
determining, with the one or more processors, that the private patient information includes confidential data based on an indicator, wherein data is confidential data when the indicator associated with the data indicates that the data is inaccessible to one or more of another health care information system and another provider, the another health care information system and the another provider having an authorized relationship with the patient;
receiving a request from a user for accessing the confidential data;
determining whether the user is allowed to access the confidential data;
responsive to the user not being allowed to access the confidential data, providing a confidentiality alert to the user;
analyzing user access of the confidential data;
determining a pattern of the user access of the confidential data; and
determining whether an access violation occurred based on the pattern.
7 Assignments
0 Petitions
Accused Products
Abstract
A system and method for managing patient consent. A data access manager includes a controller, a lookup module, a clinical authorization engine, a logging/auditing unit, a user profile engine, a report module and a user interface engine. The controller manages the core functions and the transmission of data between the data access manager components. The lookup module enables a user to query patient data. The clinical authorization engine authorizes access to patient data. The logging/auditing unit logs and monitors user activity. The user profile engine accesses and updates user profile information. The patient profile engine accesses and updates patient profile information. The report module generates reports related to the user activity. The user interface engine generates user interfaces for displaying the user profiles and patient information data.
-
Citations
20 Claims
-
1. A computer-implemented method executed on one or more processors for managing patient consent, the method comprising:
-
receiving, with the one or more processors, private patient information associated with a health care information system of a provider; determining, with the one or more processors, that the private patient information includes confidential data based on an indicator, wherein data is confidential data when the indicator associated with the data indicates that the data is inaccessible to one or more of another health care information system and another provider, the another health care information system and the another provider having an authorized relationship with the patient; receiving a request from a user for accessing the confidential data; determining whether the user is allowed to access the confidential data; responsive to the user not being allowed to access the confidential data, providing a confidentiality alert to the user; analyzing user access of the confidential data; determining a pattern of the user access of the confidential data; and determining whether an access violation occurred based on the pattern. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for managing patient consent, the system comprising:
-
one or more processors; a data access manager stored on a memory and executable by the processor, the data access manager receiving private patient information associated with a health care information system of a provider, determining that the private patient information includes confidential data based on an indicator, wherein data is confidential data when the indicator associated with the data indicates that the data is inaccessible to one or more of another health care information system and another provider, the another health care information system and the another provider having an authorized relationship with the patient, receiving a request from a user for accessing the confidential data and determining whether the user is allowed to access the confidential data; a user interface engine stored on the memory and executable by the one or more processors, the user interface engine responsive to the user not being allowed to access the confidential data, providing a confidentiality alert to the user; and a logging unit stored on the memory and executable by the one or more processors, the logging unit analyzing user access of the confidential data, determining a pattern of the user access of the confidential data and determining whether an access violation occurred based on the pattern. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer program product comprising a non-transitory computer useable medium including a computer readable program, wherein the computer readable program when executed on a computer causes the computer to:
-
receive private patient information associated with a health care information system of a provider; determine that the private patient information includes confidential data based on an indicator, wherein data is confidential data when the indicator associated with the data indicates that the data is inaccessible to one or more of another health care information system and another provider, the another health care information system and the another provider having an authorized relationship with the patient; receive a request from a user for accessing the confidential data; determine whether the user is allowed to access the confidential data; responsive to the user not being allowed to access the confidential data, provide a confidentiality alert to the user; analyze user access of the confidential data; determine a pattern of the user access of the confidential data; and determine whether an access violation occurred based on the pattern. - View Dependent Claims (20)
-
Specification