Presentation is loading. Please wait.

Presentation is loading. Please wait.

Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D.

Published byAshlynn Henderson Modified over 9 years ago

Similar presentations

Presentation on theme: "Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D."— Presentation transcript:

1 Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D

2 © 2011 The MITRE Corporation. All rights reserved Problem  Growing need for Health Information Exchange –Continuity of care –Decreased costs –Public health reporting –Facilitate clinical research  Health Information Exchange requires patient consent: –Paper-based –One form per transaction –Non-transferrable –Signed with limited time to think

3 © 2011 The MITRE Corporation. All rights reserved Background Paper consent forms prevent seamless health information exchange VA DoD

4 © 2011 The MITRE Corporation. All rights reserved Objective  Support Meaningful & Granular Patient Consent  Globally Accessible by: –Patients and –Record Holders  Platform Adaptable  Modular Design adapts to: –Technology Changes –Legal Changes

5 © 2011 The MITRE Corporation. All rights reserved Activities  Developed rules language for consent: –Basic constructs = purpose, topics, datatypes, time, etc. –Two forms of negation –Terminological hierarchies –Reusable knowledge components  Policy reasoner: –Input = Patient preferences + request –Output = Minimized rule tree  Policy enforcement: –Conversion to XACML –Prototype of EHR with XACML engine

6 © 2011 The MITRE Corporation. All rights reserved Highlight Request Server (e.g., hData) Record Holder Server EHREHR BrowserBrowser Consent Server Consent DB Policy Reasoner Policy Enforcer

7 © 2011 The MITRE Corporation. All rights reserved Demonstration Allow Direct Care Providers X = Primary Care Provider Referral from X to Recipient Purpose = Treatment Allowed Categories MedicationsAllergies ¬ Mental Health Purpose = Treatment Dr. BlassResearch Purpose = Research Anonymized¬ Imagery ¬ Mental Health Purpose = Emergency ¬ Mental Health Dr. Walsh: Purpose = Treatment Dr. Walsh: Purpose = Treatment (Medications or Allergies) and not Mental Health

8 © 2011 The MITRE Corporation. All rights reserved Impacts  Sponsor Engagements: –Office of the National Coordinator –Substance Abuse and Mental Health Services Administration –Department of Veteran’s Affairs  Other Engagements: –Healthcare Information and Management Systems Society –GE Healthcare –United Health  Open Source: –https://sourceforge.net/projects/kaironconsents/https://sourceforge.net/projects/kaironconsents/

9 © 2011 The MITRE Corporation. All rights reserved Future Plans Policy Maturity Accepted Practices Inchoate Technical Complexity Low High Preemptory Access Patient Review & Approve Integrate with State Mandates Intelligent Redaction Credential Matching Eliciting Patient Preferences Automated Enforcement Implemented Grand Challenges Under Development Integrate Care Relationships Audit

Download ppt "Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D."

Similar presentations

National HIT Agenda and HIE - 2007 John W. Loonsk, M.D. Director of Interoperability and Standards Office of the National Coordinator Department of Health.

National HIT Agenda and HIE John W. Loonsk, M.D. Director of Interoperability and Standards Office of the National Coordinator Department of Health.
Todd Frech Ocius Medical Informatics 6650 Rivers Ave, Suite 137 North Charleston, SC 29406 843-576-1426 Health Insurance Portability.

Todd Frech Ocius Medical Informatics 6650 Rivers Ave, Suite 137 North Charleston, SC Health Insurance Portability.
A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.

A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.
Supporting National e-Health Roadmaps WHO-ITU-WB joint effort WSIS C7 e-Health Facilitation Meeting 13 th May 2010 Hani Eskandar ICT Applications, ITU.

Supporting National e-Health Roadmaps WHO-ITU-WB joint effort WSIS C7 e-Health Facilitation Meeting 13 th May 2010 Hani Eskandar ICT Applications, ITU.
GPV is a QIC accredited organisation GP Referral.

GPV is a QIC accredited organisation GP Referral.
HEALTH HOMES HEALTH HOMES TECHNOLOGY SIMULATION WORKSHOP Ron HendlerNish Thakker.

HEALTH HOMES HEALTH HOMES TECHNOLOGY SIMULATION WORKSHOP Ron HendlerNish Thakker.
Veterans Health Administration Office of Informatics and Analytics Do You See a Non-VA Health Care Provider? VLER Health may benefit you! VLER Health is.

Veterans Health Administration Office of Informatics and Analytics Do You See a Non-VA Health Care Provider? VLER Health may benefit you! VLER Health is.
Brave New World: Understanding and Managing Privacy Programs in an E-Health World e-Health Conference 2013: Accelerating Change May 28, 2013, 11.30 a.m.

Brave New World: Understanding and Managing Privacy Programs in an E-Health World e-Health Conference 2013: Accelerating Change May 28, 2013, a.m.
TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.

TM The HIPAA Privacy Rule: Safeguarding Health Information in Research and Public Health Practice Centers for Disease Control and Prevention Beverly A.
Youth Mental Health April 9, 2013. Overview History Current Youth Mental Health Resources – Wraparound Orange Youth Mental Health Proposal Action item.

Youth Mental Health April 9, Overview History Current Youth Mental Health Resources – Wraparound Orange Youth Mental Health Proposal Action item.
Project Proposal to IHE: Implementation Guide for Data Segmentation For Privacy (DS4P) over REST Submitted by S&I Framework Data Segmentation for Privacy.

Project Proposal to IHE: Implementation Guide for Data Segmentation For Privacy (DS4P) over REST Submitted by S&I Framework Data Segmentation for Privacy.
The Patient as Steward of Healthcare Data Managing Consent Preferences John D. Halamka MD Louis Sullivan Lecture.

The Patient as Steward of Healthcare Data Managing Consent Preferences John D. Halamka MD Louis Sullivan Lecture.
International Forum - Quality & Safety in Healthcare 2014 1 |1 | An overview of the Guidance points Ethical issues in Patient Safety Research An overview.

International Forum - Quality & Safety in Healthcare |1 | An overview of the Guidance points Ethical issues in Patient Safety Research An overview.
Enabling a Medical Home With a Patient Communication Strategy Jeanette Christopher Northwest Primary Care Group, P.C.

Enabling a Medical Home With a Patient Communication Strategy Jeanette Christopher Northwest Primary Care Group, P.C.
16 February, 2003medXchange© 2003 Private & Confidential 1 PATIENT CENTRIC META DATA BASE AND INFORMATION SYSTEM FOR MEDICAL CALL CENTER SUPPORT.

16 February, 2003medXchange© 2003 Private & Confidential 1 PATIENT CENTRIC META DATA BASE AND INFORMATION SYSTEM FOR MEDICAL CALL CENTER SUPPORT.
Initial slides for Layered Service Architecture

Initial slides for Layered Service Architecture
August 10, 2011 A Leading Provider of Consulting and Systems Engineering Services to Public Health Organizations.

August 10, 2011 A Leading Provider of Consulting and Systems Engineering Services to Public Health Organizations.
© 2013 The MITRE Corporation. All rights reserved. Systems Engineering: MITRE & SERC Dr. J. Providakes Director, SE Tech Center “The SERC-MITRE Doctoral.

© 2013 The MITRE Corporation. All rights reserved. Systems Engineering: MITRE & SERC Dr. J. Providakes Director, SE Tech Center “The SERC-MITRE Doctoral.
Clinical Management for Behavioral Health Services (CMBHS)

Clinical Management for Behavioral Health Services (CMBHS)
How can I trust the rest of Europe ? Requirements and a possible organisation with regard to epSOS and eHealth Frank Robben General manager eHealth platform.

How can I trust the rest of Europe ? Requirements and a possible organisation with regard to epSOS and eHealth Frank Robben General manager eHealth platform.

Similar presentations

Ads by Google