Presentation is loading. Please wait.

Presentation is loading. Please wait.

Testing Procedures for DS4P Summary testing approach, addressing requirements traceability, and Scenario 4 update.

Published byJulianna Tucker Modified over 8 years ago

Similar presentations

Presentation on theme: "Testing Procedures for DS4P Summary testing approach, addressing requirements traceability, and Scenario 4 update."— Presentation transcript:

1 Testing Procedures for DS4P Summary testing approach, addressing requirements traceability, and Scenario 4 update

2 What’s new? An approach to testing that focuses DS4P-specific aspects – Based on complex/composite privacy policies Identify those aspects that enables interoperability – Simple privacy metadata – NEW to DS4P – Reuse of existing transports – Reuse of existing best-practices for trigger, logs, provenance, etc. Requirement Traceability – Organized to focus on the DS4P-specific criteria Scenario 4 – Title 38 Pull Scenarios 2, 3, 5,6 – Due next Monday

3 Privacy Policies and Interoperability Privacy Policies are typically composites of simple, basic policies Composite privacy policies (e.g. 42CFR Part)comprise of several basic, computable data sharing policies Privacy metadata used to represent simple data sharing policies: Confidentiality level Purpose of use/disclosure Information source is a covered substance abuse treatment Consent required for disclosure/re-disclosure – Privacy metadata allows loosely-coupled systems and organization to exchange the most meaningful metadata related to the data shared among systems/organizations Information exchanged may reference basic data sharing policies as privacy metadata – Confidentiality Code – Purpose of Use Code – Obligation Code – Refrain Policy Code 42 CFR Part 2 Purpose = Treatment Obligation= Require Consent Confidentiality = Restricted Basic Data Sharing Policy Composite Privacy Policy

4 Privacy Metadata used in Information Exchange to specify simple data exchange policies across organizations For treatment purpose No re-disclosure Restricted Summary Document Transport Metadata Document Section

5 Senders determine what information is protected and marks it “restricted” in the document Restricted document Summary Document

6 DS4P Specifics are the focus of our inspection testing We need to specify the OID

7 Summary Conformance Statements can be organized into – Data segmentation specific – Transport- specific – Generic best practice E.g. use ATNA

8

9 Conformance Criteria are used as traceability requirements Conformance statements related to confidentiality codes Conformance statements related to facility codes

10 Errors are easy to spot: obligation code intended to use obligation or refrain policy? Repetitive reference the same value set could be avoided

11 Confidentiality Code Functional Obligation/Refrain Purpose of use Data Criteria Privacy Consent Provenance Extensions – entry-level Data Segmentation Conformance Criteria Sender/Receiver Policy-based functionality

12

13 Patient changes mind and…

14 … the new preferences recorded…

15 … applied to segmentation.

16 Sending System Test Procedure Change mind...

17 Receiving System Process Procedure repeated after the patient changes her mind...

18 Receiving System Test Procedure Change mind...

Download ppt "Testing Procedures for DS4P Summary testing approach, addressing requirements traceability, and Scenario 4 update."

Similar presentations

IBM Software Group ® Design Thoughts for JDSL 2.0 Version 0.2.

IBM Software Group ® Design Thoughts for JDSL 2.0 Version 0.2.
A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.

A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.
Directory and Trust Services (D&TS) Define an Abstract Model Purpose: Document a common terminology that the group can use between the various tracks Identify.

Directory and Trust Services (D&TS) Define an Abstract Model Purpose: Document a common terminology that the group can use between the various tracks Identify.
HEALTH HOMES HEALTH HOMES TECHNOLOGY SIMULATION WORKSHOP Ron HendlerNish Thakker.

HEALTH HOMES HEALTH HOMES TECHNOLOGY SIMULATION WORKSHOP Ron HendlerNish Thakker.
Data Segmentation for Privacy VA/SAMHSA/Mitre/Jericho Pilot Sprint 5 Review Sprint #5 Technical Objectives – (2 week sprint ending July 27, 2012) Story:

Data Segmentation for Privacy VA/SAMHSA/Mitre/Jericho Pilot Sprint 5 Review Sprint #5 Technical Objectives – (2 week sprint ending July 27, 2012) Story:
Project Proposal to IHE: Implementation Guide for Data Segmentation For Privacy (DS4P) over REST Submitted by S&I Framework Data Segmentation for Privacy.

Project Proposal to IHE: Implementation Guide for Data Segmentation For Privacy (DS4P) over REST Submitted by S&I Framework Data Segmentation for Privacy.
Privacy and Security Tiger Team Today’s Discussion: Query/Response Models for Health Information Exchange January 7, 2013.

Privacy and Security Tiger Team Today’s Discussion: Query/Response Models for Health Information Exchange January 7, 2013.
Code of Federal Regulations Title 42, Chapter 1, Subchapter A Part 2 – CONFIDENTIALITY OF ALCOHOL AND DRUG ABUSE PATIENTS BRYANT D. MILLER CAC II, MAC,

Code of Federal Regulations Title 42, Chapter 1, Subchapter A Part 2 – CONFIDENTIALITY OF ALCOHOL AND DRUG ABUSE PATIENTS BRYANT D. MILLER CAC II, MAC,
BH07 - Protecting Privacy in an Interoperable World John Leipold, DBA, MBA, COO Valley Hope Association, SATVA Board Member, Former Chair Frances Loshin-Turso,

BH07 - Protecting Privacy in an Interoperable World John Leipold, DBA, MBA, COO Valley Hope Association, SATVA Board Member, Former Chair Frances Loshin-Turso,
Confidentiality of MH/DD/SA Records Family Court Conference March 9, 2006 Mark Botts School of Government, UNC.

Confidentiality of MH/DD/SA Records Family Court Conference March 9, 2006 Mark Botts School of Government, UNC.
(c) 2007 Mauro Pezzè & Michal Young Ch 24, slide 1 Documenting Analysis and Test.

(c) 2007 Mauro Pezzè & Michal Young Ch 24, slide 1 Documenting Analysis and Test.
Medical Reports Dr. Nasser Al - Jarallah.

Medical Reports Dr. Nasser Al - Jarallah.
1.02 ANALYZE METHODS TO CORRECTLY MAINTAIN VETERINARY MEDICAL RECORDS VETERINARY MEDICAL RECORDS.

1.02 ANALYZE METHODS TO CORRECTLY MAINTAIN VETERINARY MEDICAL RECORDS VETERINARY MEDICAL RECORDS.
Document Confidentiality Milan Petkovic, Ray Krasinski Structured Documents / Security WGs HL-7 Cambridge Meeting October, 2010.

Document Confidentiality Milan Petkovic, Ray Krasinski Structured Documents / Security WGs HL-7 Cambridge Meeting October, 2010.
Data Segmentation for Privacy VA/SAMHSA/Mitre Pilot Sprint 4 Review Sprint #4 Technical Objectives Integration of Drools Service, Document Processing,

Data Segmentation for Privacy VA/SAMHSA/Mitre Pilot Sprint 4 Review Sprint #4 Technical Objectives Integration of Drools Service, Document Processing,
TELECARE CORP HIPAA AND THE AMENDMENT PROCESS Updated 11/17/09.

TELECARE CORP HIPAA AND THE AMENDMENT PROCESS Updated 11/17/09.
Initial slides for Layered Service Architecture

Initial slides for Layered Service Architecture
Presentation to HL7 S&I Framework Data Segmentation for Privacy Initiative 9/25/2013 Johnathan Coleman, CISSP Initiative Coordinator, Data Segmentation.

Presentation to HL7 S&I Framework Data Segmentation for Privacy Initiative 9/25/2013 Johnathan Coleman, CISSP Initiative Coordinator, Data Segmentation.
NHIN Direct Project Communications Work Group Messages for Physicians August 24, 2010.

NHIN Direct Project Communications Work Group Messages for Physicians August 24, 2010.
IHE Radiology –2007What IHE Delivers 1 Christoph Dickmann IHE Technical Committee March 2007 Cross Domain Review PCC.

IHE Radiology –2007What IHE Delivers 1 Christoph Dickmann IHE Technical Committee March 2007 Cross Domain Review PCC.

Similar presentations

Ads by Google