Presentation is loading. Please wait.

Presentation is loading. Please wait.

Purpose of Use CBCC WG 12/20/2016 John “Mike” Davis.

Published byJoseph Berry Modified over 5 years ago

Similar presentations

Presentation on theme: "Purpose of Use CBCC WG 12/20/2016 John “Mike” Davis."— Presentation transcript:

1 Purpose of Use CBCC WG 12/20/2016 John “Mike” Davis

2 ISO 14265 A fundamental principle underlying the use of personal health data is that it is essential to know the purposes for which data was originally collected and that all subsequent processing activities be the same as, or consistent with, the original purpose. This principle, when applied in conjunction with a standardized list of purposes, forms the foundation for a correspondence of permitted purpose between different users, systems, organizations or policy domains who might need to share personal health information.

3 John Moehrke We really need to separate the HCS value-sets that are data tags, from those that are policy. One can apply policy directly to data, but that results in a fragile system. Where keeping data tags specific to the data, and policy managed in policy is a more sustainable solution. Transactions (push and pull) carry both, but carry them in different voices and places. PurposeOfUse is part of a user- context, and part of a transaction constraint. To use PurposeOfUse as a data tag is crossing the boundary between data tags and policy management. 

4 HL7 Healthcare Classification System
To support data tagging of security attributes about data passed between systems, the HCS defines a set of five security label fields, including: • Confidentiality, • Sensitivity, • Integrity, • Compartment, • Handling Caveat. The first four HCS Security Label fields are assessments based only upon the content of the resource such as the clinical facts to which the label is assigned. The fifth HCS Security Label Field may include handling caveat label category field to convey Purpose of Use, Obligations, and Refrain Policies to which custodians and recipients of data passed between systems must comply.

5

Download ppt "Purpose of Use CBCC WG 12/20/2016 John “Mike” Davis."

Similar presentations

2 3 Global Foundation Services Security Global Delivery Sustainability Infrastructure.

2 3 Global Foundation Services Security Global Delivery Sustainability Infrastructure.
Healthcare Privacy and Security Classification System (HCS) Guide

Healthcare Privacy and Security Classification System (HCS) Guide
Obligation Vocabulary Work in Progress HL7 Security WG Kathleen Connor VA (ESC) January 2012.

Obligation Vocabulary Work in Progress HL7 Security WG Kathleen Connor VA (ESC) January 2012.
Data Segmentation Model 17 Jan 2012 John (Mike) Davis HL7 Security Co-Chair.

Data Segmentation Model 17 Jan 2012 John (Mike) Davis HL7 Security Co-Chair.
Module: Leadership Training Workshop for Health Professionals Organization: East Africa HEALTH Alliance Author(s): Prof. John T. Kakitahi, 2009-2012 Resource.

Module: Leadership Training Workshop for Health Professionals Organization: East Africa HEALTH Alliance Author(s): Prof. John T. Kakitahi, Resource.
Cross Domain Patient Identity Management Eric Heflin Dir of Standards and Interoperability/Medicity.

Cross Domain Patient Identity Management Eric Heflin Dir of Standards and Interoperability/Medicity.
An Object-Oriented Approach to Programming Logic and Design

An Object-Oriented Approach to Programming Logic and Design
1 A pattern language for security models Eduardo B. Fernandez and Rouyi Pan Presented by Liping Cai 03/15/2006.

1 A pattern language for security models Eduardo B. Fernandez and Rouyi Pan Presented by Liping Cai 03/15/2006.
Key Management with the Voltage Data Protection Server Luther Martin IEEE P1619.3 May 7, 2007.

Key Management with the Voltage Data Protection Server Luther Martin IEEE P May 7, 2007.
Using Taxonomies Effectively in the Organization KMWorld 2000 Mike Crandall Microsoft Information Services

Using Taxonomies Effectively in the Organization KMWorld 2000 Mike Crandall Microsoft Information Services
DICOM and ISO/TC215 Hidenori Shinoda Charles Parisot.

DICOM and ISO/TC215 Hidenori Shinoda Charles Parisot.
Refrain Policy Vocabulary HL7 Security WG Kathleen Connor VA (ESC) January 2012.

Refrain Policy Vocabulary HL7 Security WG Kathleen Connor VA (ESC) January 2012.
Unit 3.02 Understanding Health Informatics.  Health Informatics professionals treat technology as a tool that helps patients and healthcare professionals.

Unit 3.02 Understanding Health Informatics.  Health Informatics professionals treat technology as a tool that helps patients and healthcare professionals.
Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls S/MIME Working Group Meeting December 13, 2000.

Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls S/MIME Working Group Meeting December 13, 2000.
ISO/IEC 27001:2013 Annex A.8 Asset management

ISO/IEC 27001:2013 Annex A.8 Asset management
Staying ahead of the storm: know your role in information security before a crisis hits Jason Testart, IST Karen Jack, Secretariat.

Staying ahead of the storm: know your role in information security before a crisis hits Jason Testart, IST Karen Jack, Secretariat.
Chapter 5 – Designing Trusted Operating Systems

Chapter 5 – Designing Trusted Operating Systems
Educational Template Chapter 11 Data Privacy and Security Ross Fraser Chapter 11 Data Privacy & Security.

Educational Template Chapter 11 Data Privacy and Security Ross Fraser Chapter 11 Data Privacy & Security.
44220: Database Design & Implementation Introduction to Module Ian Perry Room: C49 Ext.: 7287

44220: Database Design & Implementation Introduction to Module Ian Perry Room: C49 Ext.: 7287
Cross-Enterprise User Authentication Year 2 March 16, 2006 Cross-Enterprise User Authentication Year 2 March 16, 2006 John F. Moehrke GE Healthcare IT.

Cross-Enterprise User Authentication Year 2 March 16, 2006 Cross-Enterprise User Authentication Year 2 March 16, 2006 John F. Moehrke GE Healthcare IT.

Similar presentations

Ads by Google