ASTM E1986-2009 健康信息的信息访问特权的标准指南
作者:标准资料网 时间:2024-05-21 23:06:34 浏览:8344
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:StandardGuideforInformationAccessPrivilegestoHealthInformation
【原文标准名称】:健康信息的信息访问特权的标准指南
【标准号】:ASTME1986-2009
【标准状态】:现行
【国别】:美国
【发布日期】:2009
【实施或试行日期】:
【发布单位】:美国材料与试验协会(US-ASTM)
【起草单位】:E31.25
【标准类型】:(Guide)
【标准水平】:()
【中文主题词】:
【英文主题词】:access;accessprivileges;confidentiality;healthdata;healthinformation;healthcarerecords;Access;Emergencymedicalservices(EMS);Healthknowledge/informationsystems;Informationaccessprivileges(IAP);Patientbiographical/medicaldata
【摘要】:Themaintenanceofconfidentialityinpaper-based,electronic,orcomputer-basedhealthinformationrequiresthatpoliciesandproceduresbeinplacetoprotectconfidentiality.Confidentialityofinformationdependsonstructuralandexplicitmechanismstoallowpersonsorsystemstodefinewhohasaccesstowhat,andinwhatsituationthataccessisgranted.Forguidelinesonthedevelopmentandimplementationofprivilegemanagementinfrastructuressupportingthesemechanisms,seeGuideE2595.Confidentialprotectionofdataelementsisaspecificrequirement.Theclassificationofdataelementsintorestrictiveandspecificallycontrolledcategoriesissetbypolicies,professionalpractice,andlaws,legislation,andregulations.Therearethreeexplicitconceptsuponwhichtheuseofandaccesstohealthinformationconfidentialityaredefined.Eachoftheseconceptsisanexplicitanduniquecharacteristicrelevanttoconfidentiality,butonlythroughthecombination(convergence)ofallthreeconceptscanappropriateaccesstoanexplicitdataelementataspecificpointintimebeprovided,andunauthorizedaccessdenied.Thethreeconceptsare:Thecategorizationandbreakdownofdataintologicalandreasonableelementsorentities.Theidentificationofindividualrolesorjobfunctions.Theestablishmentofcontextandconditionsofdatauseataspecificpointintime,andwithinaspecificsetting.Theoverridingprincipleinpreservingtheconfidentialityofinformationistoprovideaccesstothatinformationonlyundercircumstancesandtoindividualswhenthereisanabsolute,established,andrecognizedneedtoaccessthatdata,andtheinformationaccessedshoulditselfbeconstrainedonlytothatinformationessentialtoaccomplishadefinedandrecognizedtaskorprocess.Informationnonessentialtothattaskorprocessshouldideallynotbeaccessible,eventhoughanindividualaccessingthatinformationmayhavesomegeneralrightofaccesstothatinformation.1.1Thisguidecoverstheprocessofgrantingandmaintainingaccessprivilegestohealthinformation.Itdirectlyaddressesthemaintenanceofconfidentialityofpersonal,provider,andorganizationaldatainthehealthcaredomain.Itaddressesawiderangeofdataanddataelementsnotalltraditionallydefinedashealthcaredata,butallelementalintheprovisionofdatamanagement,dataservices,andadministrativeandclinicalhealthcareservices.Inaddition,thisguideaddressesspecificrequirementsforgrantingaccessprivilegestopatient-specifichealthinformationduringhealthemergencies.1.2Thisguideisbasedonlong-termexistingandestablishedprofessionalpracticesinthemanagementofhealthcareadministrativeandclinicaldata.Healthcaredata,andspecificallyhealthcarerecords(alsoreferredtoasmedicalrecordsorpatientrecords),aregenerallymanagedundersimilarprofessionalpracticesthroughouttheUnitedStates,essentiallyregardlessofspecificvariationsinlocal,regional,state,andfederallawsregardingrulesandrequirementsfordataandrecordmanagement.1.3Thisguideappliestoallindividuals,groups,organizations,data-users,data-managers,andpublicandprivatefirms,companies,agencies,departments,bureaus,service-providers,andsimilarentitiesthatcollectindividual,group,andorganizationaldatarelatedtohealthcare.1.4Thisguideappliestoallcollection,use,management,maintenance,disclosure,andaccessofallindividual,group,andorganizationaldatarelatedtohealthcare.1.5Thisguidedoesnotattempttoaddressspecificlegislativeandregulatoryissuesregardingindividual,group,andorganizationalrigh......
【中国标准分类号】:C07
【国际标准分类号】:35_240_80
【页数】:13P.;A4
【正文语种】:英语
【原文标准名称】:健康信息的信息访问特权的标准指南
【标准号】:ASTME1986-2009
【标准状态】:现行
【国别】:美国
【发布日期】:2009
【实施或试行日期】:
【发布单位】:美国材料与试验协会(US-ASTM)
【起草单位】:E31.25
【标准类型】:(Guide)
【标准水平】:()
【中文主题词】:
【英文主题词】:access;accessprivileges;confidentiality;healthdata;healthinformation;healthcarerecords;Access;Emergencymedicalservices(EMS);Healthknowledge/informationsystems;Informationaccessprivileges(IAP);Patientbiographical/medicaldata
【摘要】:Themaintenanceofconfidentialityinpaper-based,electronic,orcomputer-basedhealthinformationrequiresthatpoliciesandproceduresbeinplacetoprotectconfidentiality.Confidentialityofinformationdependsonstructuralandexplicitmechanismstoallowpersonsorsystemstodefinewhohasaccesstowhat,andinwhatsituationthataccessisgranted.Forguidelinesonthedevelopmentandimplementationofprivilegemanagementinfrastructuressupportingthesemechanisms,seeGuideE2595.Confidentialprotectionofdataelementsisaspecificrequirement.Theclassificationofdataelementsintorestrictiveandspecificallycontrolledcategoriesissetbypolicies,professionalpractice,andlaws,legislation,andregulations.Therearethreeexplicitconceptsuponwhichtheuseofandaccesstohealthinformationconfidentialityaredefined.Eachoftheseconceptsisanexplicitanduniquecharacteristicrelevanttoconfidentiality,butonlythroughthecombination(convergence)ofallthreeconceptscanappropriateaccesstoanexplicitdataelementataspecificpointintimebeprovided,andunauthorizedaccessdenied.Thethreeconceptsare:Thecategorizationandbreakdownofdataintologicalandreasonableelementsorentities.Theidentificationofindividualrolesorjobfunctions.Theestablishmentofcontextandconditionsofdatauseataspecificpointintime,andwithinaspecificsetting.Theoverridingprincipleinpreservingtheconfidentialityofinformationistoprovideaccesstothatinformationonlyundercircumstancesandtoindividualswhenthereisanabsolute,established,andrecognizedneedtoaccessthatdata,andtheinformationaccessedshoulditselfbeconstrainedonlytothatinformationessentialtoaccomplishadefinedandrecognizedtaskorprocess.Informationnonessentialtothattaskorprocessshouldideallynotbeaccessible,eventhoughanindividualaccessingthatinformationmayhavesomegeneralrightofaccesstothatinformation.1.1Thisguidecoverstheprocessofgrantingandmaintainingaccessprivilegestohealthinformation.Itdirectlyaddressesthemaintenanceofconfidentialityofpersonal,provider,andorganizationaldatainthehealthcaredomain.Itaddressesawiderangeofdataanddataelementsnotalltraditionallydefinedashealthcaredata,butallelementalintheprovisionofdatamanagement,dataservices,andadministrativeandclinicalhealthcareservices.Inaddition,thisguideaddressesspecificrequirementsforgrantingaccessprivilegestopatient-specifichealthinformationduringhealthemergencies.1.2Thisguideisbasedonlong-termexistingandestablishedprofessionalpracticesinthemanagementofhealthcareadministrativeandclinicaldata.Healthcaredata,andspecificallyhealthcarerecords(alsoreferredtoasmedicalrecordsorpatientrecords),aregenerallymanagedundersimilarprofessionalpracticesthroughouttheUnitedStates,essentiallyregardlessofspecificvariationsinlocal,regional,state,andfederallawsregardingrulesandrequirementsfordataandrecordmanagement.1.3Thisguideappliestoallindividuals,groups,organizations,data-users,data-managers,andpublicandprivatefirms,companies,agencies,departments,bureaus,service-providers,andsimilarentitiesthatcollectindividual,group,andorganizationaldatarelatedtohealthcare.1.4Thisguideappliestoallcollection,use,management,maintenance,disclosure,andaccessofallindividual,group,andorganizationaldatarelatedtohealthcare.1.5Thisguidedoesnotattempttoaddressspecificlegislativeandregulatoryissuesregardingindividual,group,andorganizationalrigh......
【中国标准分类号】:C07
【国际标准分类号】:35_240_80
【页数】:13P.;A4
【正文语种】:英语
下载地址: 点击此处下载