Methods, apparatuses and computer program products for auditing protected health information
First Claim
1. A method comprising:
- detecting a query to access information stored in a database comprising patient-related information;
saving the query in an event file;
capturing query-related information associated with the query and saving the query-related information in the event file;
determining, via a processor, whether data of the query itself comprises protected health information;
executing the query;
determining whether data returned from executing the query comprises protected health information;
determining whether a software application that generated the query has access to protected health information;
wherein the query is determined to comprise protected health information in an instance in which it is determined that either the query itself or the data returned by the query comprises protected health information;
wherein the query is determined not to comprise protected health information in an instance in which it is determined that the software application does not have access to protected health information; and
transmitting, in response to determining that the query comprises protected health information, the query-related information to be used in a reporting table.
12 Assignments
0 Petitions
Accused Products
Abstract
An apparatus is provided for auditing protected health information of one or more patients. The apparatus includes at least one memory and at least one processor configured to detect a query to access information stored in a database including patient-related information. The processor is further configured to save the query in an event file. The processor is further configured to capture query-related information associated with the query and save the query-related information in the event file. The processor is further configured to determine that the query involves protected health information. The processor is further configured to transmit, in response to determining that the query involves protected health information, the query-related information to be used in a reporting table. Corresponding computer program products and methods are also provided.
-
Citations
20 Claims
-
1. A method comprising:
-
detecting a query to access information stored in a database comprising patient-related information; saving the query in an event file; capturing query-related information associated with the query and saving the query-related information in the event file; determining, via a processor, whether data of the query itself comprises protected health information; executing the query; determining whether data returned from executing the query comprises protected health information; determining whether a software application that generated the query has access to protected health information; wherein the query is determined to comprise protected health information in an instance in which it is determined that either the query itself or the data returned by the query comprises protected health information; wherein the query is determined not to comprise protected health information in an instance in which it is determined that the software application does not have access to protected health information; and transmitting, in response to determining that the query comprises protected health information, the query-related information to be used in a reporting table. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An apparatus comprising:
-
at least one memory; and at least one processor configured to cause the apparatus to; detect a query to access information stored in a database comprising patient-related information; save the query in an event file; capture query-related information associated with the query and save the query-related information in the event file; determine whether data of the query itself comprises protected health information; execute the query; determine whether data returned from executing the query comprises protected health information, determine whether a software application that generated the query has access to protected health information; wherein the query is determined to comprise protected health information in an instance in which it is determined that either the query itself or the data returned by the query comprises protected health information; wherein the query is determined not to comprise protected health information in an instance in which it is determined that the software application does not have access to protected health information; and transmit, in response to determining that the query involves protected health information, the query-related information to be used in a reporting table. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer program product comprising at least one non-transitory computer-readable storage medium having computer-executable program code instructions stored therein, the computer executable program code instructions comprising:
-
program code instructions configured to detect a query to access information stored in a database comprising patient-related information; program code instructions configured to save the query in an event file; program code instructions configured to capture query-related information associated with the query and save the query-related information in the event file; program code instructions configured to determine whether data of the query itself comprises protected health information; program code instructions configured to execute the query; program code instructions configured to determine whether data returned from executing the query comprises protected health information, program code instructions configured to determine whether a software application that generated the query has access to protected health information; wherein the query is determined to comprise protected health information in an instance in which it is determined that either the query itself or the data returned by the query comprises protected health information; wherein the query is determined not to comprise protected health information in an instance in which it is determined that the software application does not have access to protected health information; and program code instructions configured to cause transmission, in response to determining that the query involves protected health information, of the query-related information to be used in a reporting table. - View Dependent Claims (20)
-
Specification