Standing order database search system and method for internet and intranet application
First Claim
1. A data access system for controlling access to electronic health information comprising:
- at least one database containing said electronic health information relating to a plurality of patients; and
at least one computer configured to;
communicate with said at least one database;
index data items of said electronic health information;
receive a query from a requesting party for access to said electronic health information satisfying said query;
identify said electronic health information satisfying said query;
authenticate an identity of said requesting party;
apply patient privacy attributes related to separate data items of said electronic health information, said patient privacy attributes defining access restrictions to respective said data items, said patient privacy attributes controlled by a patient to whom said electronic health information pertains;
deny said requesting party access to said respective data items of said electronic health information satisfying said query when said patient privacy attributes are not satisfied; and
permit said requesting party access to said respective data items of said electronic health information satisfying said query when said patient privacy attributes are satisfied, said patient privacy attribute defines selection criteria specifying under which conditions respective patients are willing to participate in clinical trials.
0 Assignments
0 Petitions
Accused Products
Abstract
An internet and/or intranet based system and method for limiting access to confidential records to properly authorized and authenticated parties. The system'"'"'s central premise is that the person to whom such records pertain should control access rights through specific, informed consent. It reinforces the widely held conception of privacy in general, while also providing an expedited and cost efficient means to find and transfer confidential records. It also gives the repositories where these records are held the right to stipulate the specific terms and conditions that must be fulfilled before they will release documents. And it carries out all of these legitimate interests in a way that is fast, simple to use and easy to audit. The system optionally includes a billing mechanism to pay for any added cost associated with providing this additional protection; and in its preferred embodiment, is applicable to both digital as well as non-digital records.
-
Citations
11 Claims
-
1. A data access system for controlling access to electronic health information comprising:
-
at least one database containing said electronic health information relating to a plurality of patients; and at least one computer configured to; communicate with said at least one database; index data items of said electronic health information; receive a query from a requesting party for access to said electronic health information satisfying said query; identify said electronic health information satisfying said query; authenticate an identity of said requesting party; apply patient privacy attributes related to separate data items of said electronic health information, said patient privacy attributes defining access restrictions to respective said data items, said patient privacy attributes controlled by a patient to whom said electronic health information pertains; deny said requesting party access to said respective data items of said electronic health information satisfying said query when said patient privacy attributes are not satisfied; and permit said requesting party access to said respective data items of said electronic health information satisfying said query when said patient privacy attributes are satisfied, said patient privacy attribute defines selection criteria specifying under which conditions respective patients are willing to participate in clinical trials. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-implemented method for integrating and controlling access to an electronic health record of a patient, comprising:
-
at least one database containing said electronic health information relating to a plurality of patients; at least one computer configured to; communicate with said at least one database; index data items of said electronic health information; receiving, by a computer, a query from a requesting party for access to a data item within said electronic health record of said patient; authenticating, by said computer, said requesting party; identifying, by said computer, said data item satisfying said query; applying, by said computer, a patient privacy attribute related to said data item, said patient privacy attribute controlled by said patient to whom said electronic health information pertains; denying, by said computer, said requesting party access to said data item when said patient privacy attribute is not satisfied; and permitting, by said computer, said requesting party access to said data item when said patient privacy attribute is satisfied, said patient privacy attribute defines selection criteria specifying under which conditions respective patients are willing to participate in clinical trials. - View Dependent Claims (10, 11)
-
Specification