Uploaded image for project: 'FHIR Specification Feedback'
  1. FHIR Specification Feedback
  2. FHIR-28853

What process is in place to restrict a client app’s unauthorized use of a member’s information?

    XMLWordPrintableJSON

Details

    • Icon: Change Request Change Request
    • Resolution: Not Persuasive
    • Icon: Highest Highest
    • US Da Vinci HRex (FHIR)
    • current
    • Clinical Interoperability Council
    • HRex Parameters - Member Match Response Profile
    • Resource Profile: HRexMemberMatchResponseParameters
    • Hide

      The information being shared is not information that is considered 'sensitive' in the context where it's being shared.  The 'new' payer is already sharing demographic information and the demographics provided by the 'old' payer has to be well aligned or there wouldn't be a match.  In Coverage, the new payer already knows the old payer had coverage - or they wouldn't be trying to perform a match in the first place.  The member id and coverage id being shared would not be 'sensitive' and any use of them in interactions with the old payer would be governed by the old payer.  E.g. if the new payer performs a search using the member id, the old payer would determine what information is shared.

      The patient or their representative, by definition, has to be aware that the match is happening because that's the only way the new payer could have the information necessary to initiate the match.

      Show
      The information being shared is not information that is considered 'sensitive' in the context where it's being shared.  The 'new' payer is already sharing demographic information and the demographics provided by the 'old' payer has to be well aligned or there wouldn't be a match.  In Coverage, the new payer already knows the old payer had coverage - or they wouldn't be trying to perform a match in the first place.  The member id and coverage id being shared would not be 'sensitive' and any use of them in interactions with the old payer would be governed by the old payer.  E.g. if the new payer performs a search using the member id, the old payer would determine what information is shared. The patient or their representative, by definition, has to be aware that the match is happening because that's the only way the new payer could have the information necessary to initiate the match.
    • Marti Velezis / James Tcheng : 6-0-1

    Description

      What process is in place to restrict a client app’s unauthorized use of a member’s information? How will members be informed about a client’s access, exchange, and use of their information?

      Existing Wording:

      Resource Profile: HRexMemberMatchResponseParameters

      Attachments

        Activity

          People

            Unassigned Unassigned
            celine_lefebvre Celine Lefebvre
            Celine Lefebvre
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: