Article thumbnail

Integration of Clinical Workflows with Privacy Policies on a Common Semantic Platform

By Jan Werner, Bradley Malin, Yonghwan Lee, Akos Ledeczi and Janos Sztipanovits


Abstract. As healthcare organizations (HCOs) migrate to electronic systems, they must ensure compliance with complex data protection legislation, such as the Health Insurance Portability and Accountability Act (HIPAA). Legislation specifies rules that must be enforced, but regulatory language is often imprecise, forcing HCOs to define local policies and procedures, as well as specific enforcement technologies. It is difficult for HCOs to ensure requirements are correctly translated across the enterprise, a problem compounded by the constant growth and evolution of deployed information technology (IT), such as clinical information systems (CISs). The consequence is HCOs frequently rely on ad hoc IT configurations, which are unverified and potentially conflict with an HCO‟s policy. Thus, it is crucial to develop (1) formal and computable representations of rules and requirements in data protection legislations, and (2) CISs that automatically enforce such specifications. This paper introduces a solution to these challenges by integrating HIPAA policy rules with a domainspecific model-integrated computing suite, tailored to the clinical enterprise

Year: 2010
OAI identifier: oai:CiteSeerX.psu:
Provided by: CiteSeerX
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • (external link)
  • (external link)
  • Suggested articles

    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.