1 / 18

Kairon : Granular Patient Consent Management

Kairon : Granular Patient Consent Management. The MITRE Corporation Peter Mork, PhD. About MITRE Research. MITRE: Private, independent non-profit organization Chartered to work solely in the public interest Provide support to governmental sponsors

fadhila
Télécharger la présentation

Kairon : Granular Patient Consent Management

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Kairon: Granular Patient Consent Management The MITRE Corporation Peter Mork, PhD

  2. About MITRE Research • MITRE: • Private, independent non-profit organization • Chartered to work solely in the public interest • Provide support to governmental sponsors • Four Federally Funded Research and Development Centers • MITRE Research: • Internal competition • Approximately 6% of revenue (provided by FAR) • Targeted to specific focus areas, including health care • Advances technologies for transition to public and private sectors

  3. Consent Research Request Server Browser Record Holder Server Consent Server EHR Policy Enforcer Consent DB Policy Reasoner

  4. Objective: Efficient Consent Management • Globally Accessible by: • Patients and • Record Holders • Intuitive User Interface • Platform Adaptable • Modular Design adapts to: • Technology or • Legal Changes

  5. Consent Directive Analysis Model Privacy Policy Reference • Consent specifications- allow/disallow action • purpose of consent • effective period • additional conditions • Medical Record Reference • Patient Identification • Medical Record Identification Action Specification - hierarchy of operations applied to information • Information Sender • -Organization • Information Receiver • Role • Identity • Health Information Affected • Related to a diagnosis • Data Sensitivity • Coverage Type • Type of information (e.g., lab, rx)

  6. Consent Directive Form

  7. Mobile App Interface

  8. John Smith’s Privacy Preferences

  9. Preference Simplification(through Rule Minimization) Dr. Walsh: Purpose = Treatment (Medications or Allergies) and not Mental Health

  10. Rewritten Preferences <AND> <OR> <String-is-in(‘medication’, Select(datatype))/> <String-is-in(‘allergy’, Select(datatype))/> </OR> <String-is-in(‘NOT-mental-health’, Select(topic)))/></AND>

  11. Consent Form  CDA Document • Produced by the form • Conforms to the Implementation Guide

  12. Electronic Consent Directive: CDA Document (rendered as HTML)

  13. Sample Response

  14. Contacts • Peter Mork, PhD • pmork@mitre.org • 703-983-1465 • Jean Stanford • jstanford@mitre.org • 301-814-4934 • Source Forge Site: • http://kaironconsents.sourceforge.net/

  15. Backup Slides

  16. Sample Consent Form

  17. Constraints on Consent • Legal • HIPAA / Privacy Act • State Laws • Trust • Relationships • Delegation • Compliance • Auditing • Enforcement • Authentication • Credentials • Identity Management

  18. Implementation Landscape High Integrate with State Mandates Automated Enforcement Intelligent Redaction Eliciting Patient Preferences Integrate Care Relationships Implemented Technical Complexity Under Development Patient Review & Approve Grand Challenges Credential Matching Preemptory Access Audit Low Accepted Practices Policy Maturity Inchoate

More Related