Today, authenticating and authorizing access to health data is typically managed via enterprise systems.
Consequently, once entry is gained, any authorized user can search and view health records of any patient record stored in that system — regardless of context or need. Privacy and consent of individual patients are an afterthought.
IDENTOS’ approach is to put people first to protect & authorize access to private data. With Smile CDR’s rich tooling for enterprises to build unified, interoperable data stores — trusted patient access and data relationships with authorized users in health enterprises can now be established.
This partnership is important for a variety of reasons including:
- Prevention of unauthorized access to health information
- Breaking down data silos easily with consideration for people’s privacy and consent at the core
- Ensuring an end to end interoperable solution from data access to data integration
- Compliance with personal data regulatory frameworks such as GDPR and PIPEDA
“We firmly believe that when it comes to personal health data, people need to be provided intelligent control of their identity and consent” says Mike Cook, CEO of IDENTOS. “This is why we take a people first approach to identity management, unifying authentication and authorization before enabling access to health records, while providing seamless, privacy respecting and secure interactions”.
“Our relationship with IDENTOS provides customers with the option to implement electronic health record systems that enable them to establish consent authorization protocols with each patient,” says Duncan Weatherston, CEO of Smile CDR. “Together, we can enable customers to put a lock on every door to control access to every individual’s data room within their EHR system, and not just on the front door of their entire data repository.”