United States Health Information Knowledgebase

 

You are viewing the Abridged Children's EHR Format.
To view the Full Children's EHR Format, you must first agree to the HL7 License Agreement.

Children's EHR Format Requirement Comparison

(No Match) Requirement ID: Req-294: Security Req-718: Entity Access Control
(Matches) Release Package: 2013 Format 2013 Format
(No Match) Title: Security Entity Access Control
(No Match) Description: STATEMENT: Secure the access to an EHR-S and EHR information. Manage the sets of access control permissions granted within an EHR-S. Prevent unauthorized use of data, data loss, tampering and destruction.

DESCRIPTION: To enforce security, all EHR-S applications must adhere to the rules established to control access and protect the privacy of EHR information. Security measures assist in preventing unauthorized use of data and protect against loss, tampering and destruction. An EHR-S must be capable of including or interfacing with standards-conformant security services to ensure that any Principal (user, organization, device, application, component, or object) accessing the system or its data is appropriately authenticated, authorized and audited in conformance with local and/or jurisdictional policies.

An EHR-S should support Chains of Trust in respect of authentication, authorization, and privilege management, either intrinsically or by interfacing with relevant external services.
STATEMENT: Verify and enforce access control to all EHR-S components, EHR information and functions for end-users, applications, sites, etc., to prevent unauthorized use of a resource.
DESCRIPTION: Entity Access Control is a fundamental function of an EHR-S. To ensure that access is controlled, an EHR-S must perform authentication and authorization of users or applications for any operation that requires it and enforce the system and information access rules that have been defined.
(No Match) Topic Area(s): Child Welfare, Parents and Guardians and Family Relationship Data, Patient Identifier, Patient Portals - PHR, Prenatal Screening, School-Based Linkages, Security and Confidentiality Child Welfare, Parents and Guardians and Family Relationship Data, Patient Portals - PHR, Security and Confidentiality
(Matches) Provenance: HL7 EHR FM R1 HL7 EHR FM R1
(Matches) Achievability:
(No Match) Requirement Type: Header Function
(Matches) Shall/Should/May:
(Matches) Critical/Core: no no
(Matches) Status: Released Released
(Matches) Links:
(Matches) See Also:
(Matches) Comments:
(Matches) Additional Information:
(Matches) Implementation Notes:
Scroll To Top