Consent Management & Auditing
HIPAAT consent management is designed to proactively protect personal health information (PHI). It manages patient consent to the collection, use and disclosure of PHI, and manages privacy policies of organizations and jurisdictions.
With our standards-based consent management software:
Patients are able to:
|Confirm or refuse participation in health information exchange (HIE)|
|Create, edit, store and withdraw health information privacy policies – for example, “do not disclose my medication history,” “do not disclose my PHI for research purposes” or “do not disclose my PHI to Dr. John Smith”|
|Allow or deny override (‘break-the-glass’) access to PHI, if legislation permits.|
Visit the product page for myConsentMinder
Physicians, hospitals, health networks, HIEs and HIOs are able to:
restrict access to a patient’s PHI – to a very detailed level – at the patient’s request, with virtually no impact to clinical workflow create and record organizational privacy policies – for example, “restrict internal use of employees’ health information”
- create and record jurisdictional policies – for example, “restrict disclosure of mental health records”
have access to restricted PHI – legislation permitting – when needed. This is called ‘break-the-glass’ or ‘override’ access, and it generates a security alert to the privacy officer.
Centralized Privacy Auditing
Auditing is the key to health information privacy management, allowing provider organizations, hospitals, health networks, HIEs and HIOs to actively address patient privacy and measure compliance with established privacy policies.
Our standards-based auditing software generates a real-time audit trail of all access – and attempted access – to PHI and privacy policies. And when a clinician overrides a privacy restriction (‘break-the-glass’ access to PHI), the privacy officer is automatically notified by email. This allows the privacy officer to follow-up on the potential breach, and make the patient aware of the situation and the reason for it.
Our auditing solution also enables authorized administrators to generate simple, detailed and customized audit reports. Reports may be scheduled to run automatically, or generated ad-hoc.
Visit the product page for our Universal Audit Repository