Data driven schema for patient data exchange system
First Claim
1. A system for exchanging patient data, the system comprising:
- at least one device that implements an interface, wherein the interface includes a software structure acting as a point of interaction, the at least one device includes at least one of;
an implantable medical device or a programmer device for an implantable medical device, and when the interface receives a metadata envelope that conforms to a schema that defines each allowable metadata attribute of the metadata envelope;
the interface determines, based at least in part on a first metadata attribute of the received metadata envelope, a particular patient data handling policy from among a plurality of available patient data handling policies that the interface is configured to apply, wherein each of the available patient data handling policies prescribes a different way of handling patient data;
the interface applies the particular patient data handling policy with regard to a particular set of patient data encapsulated within the received metadata envelope; and
when the particular patient data handling policy indicates that receiving authorization is required in order to access the particular set of patient data, the interface requests, to receive from an authorization service identified by a second metadata attribute of the received metadata envelope, the authorization to access the particular set of patient data,wherein the interface receives the authorization to access the particular set of patient data only when the interface provides evidence to the authorization service that the interface is configured such that the interface does not transmit the particular set of patient data in encrypted or unencrypted form outside the metadata envelope and does not generate copies of the particular set of patient data in unencrypted form that persist after termination of the interface.
1 Assignment
0 Petitions
Accused Products
Abstract
A patient data exchange system comprises at least one device. Each of the devices implements an interface. When a device in the patient data exchange system publishes patient data, the device generates a metadata envelope that encapsulates the patient data. The metadata envelope conforms to a schema that defines allowable metadata attributes of the metadata envelope. When a device in the patient data exchange system receives a metadata envelope that conforms to the schema, the device determines, based at least in part on a metadata attribute of the metadata envelope, a particular patient data handling policy to apply to patient data encapsulated by the metadata envelope. In some instances, the metadata attribute indicates that authorization is required from an authorization service to access the patient data encapsulated by the metadata envelope.
24 Citations
22 Claims
-
1. A system for exchanging patient data, the system comprising:
at least one device that implements an interface, wherein the interface includes a software structure acting as a point of interaction, the at least one device includes at least one of;
an implantable medical device or a programmer device for an implantable medical device, and when the interface receives a metadata envelope that conforms to a schema that defines each allowable metadata attribute of the metadata envelope;the interface determines, based at least in part on a first metadata attribute of the received metadata envelope, a particular patient data handling policy from among a plurality of available patient data handling policies that the interface is configured to apply, wherein each of the available patient data handling policies prescribes a different way of handling patient data; the interface applies the particular patient data handling policy with regard to a particular set of patient data encapsulated within the received metadata envelope; and
when the particular patient data handling policy indicates that receiving authorization is required in order to access the particular set of patient data, the interface requests, to receive from an authorization service identified by a second metadata attribute of the received metadata envelope, the authorization to access the particular set of patient data,wherein the interface receives the authorization to access the particular set of patient data only when the interface provides evidence to the authorization service that the interface is configured such that the interface does not transmit the particular set of patient data in encrypted or unencrypted form outside the metadata envelope and does not generate copies of the particular set of patient data in unencrypted form that persist after termination of the interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
12. A method of handling patient data, the method comprising:
-
receiving, at an interface implemented by a device, a metadata envelope that encapsulates a particular set of patient data associated with a patient, wherein the interface includes a software structure acting as a point of interaction, the device includes at least one of;
an implantable medical device or a programmer device for an implantable medical device, and the metadata envelope conforms to a schema that defines each allowable metadata attribute of the metadata envelope;determining, by the interface, based at least in part on a first metadata attribute of the received metadata envelope, a particular patient data handling policy from among a plurality of available patient data handling policies that the interface is configured to apply, wherein each of the available patient data handling policies prescribes a different way of handling patient data; applying, by the interface, the particular patient data handling policy with regard to the particular set of patient data; and when the particular patient data handling policy indicates receiving authorization is required in order to access the particular set of patient data, requesting, by the interface, from an authorization service identified by a second metadata attribute of the received metadata envelope, to receive the authorization to access the particular set of patient data, wherein the interface receives the authorization to access the particular set of patient data only when the interface provides evidence to the authorization service that the interface is configured such that the interface does not transmit the particular set of patient data in encrypted or unencrypted form outside the metadata envelope and does not generate copies of the particular set of patient data in unencrypted form that persist after termination of the interface. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A non-transitory computer-readable data storage medium having instructions stored thereon that, when executed, configure an interface implemented by a device to:
-
receive a metadata envelope that encapsulates a particular set of patient data associated with a patient, wherein the interface includes a software structure acting as a point of interaction, the device includes at least one of;
an implantable medical device or a programmer device for an implantable medical device, and the metadata envelope conforms to a schema that defines each allowable metadata attribute of the metadata envelope;determine based at least in part on a first metadata attribute of the received metadata envelope, a particular patient data handling policy from among a plurality of available patient data handling policies that the interface is configured to apply, wherein each of the available patient data handling policies prescribes a different way of handling patient data; apply the particular patient data handling policy with regard to the particular set of patient data; and when the particular patient data handling policy indicates receiving authorization is required in order to access the particular set of patient data, request, to receive from an authorization service identified by a second metadata attribute of the received metadata envelope, the authorization to access the particular set of patient data, wherein the interface receives the authorization to access the particular set of patient data only when the interface provides evidence to the authorization service that the interface is configured such that the interface does not transmit the particular set of patient data in encrypted or unencrypted form outside the metadata envelope and does not generate copies of the particular set of patient data in unencrypted form that persist after termination of the interface.
-
Specification