The protocol is to be used on current and proposed national eHealth systems; it can also be used by the National Health Service (NHS) Boards for local level initiatives should they wish. The aim is to ensure an effective as well as a standardised use of national eHealth systems, in accordance with legal/professional requirements and best practice.
Concretely,the objectives of the Protocol are to ensure that there is clarity around:
- Authentication: the identity of the individual users.
- Authorisation: what the individual users are permitted to do.
- Assurance: what actions individuals have undertaken.
- Agreement: the level of consent required/relied on for these actions.
In order for these objectives to be achieved the protocol will:
- Provide a robust information governance framework for the legal, secure, confidential and ethical access to information held on the system by authorised users for defined purposes.
- Define the system's users.
- Define the access permissions for the system purposes.
- Define the system operational issues, roles and responsibilities.
- Set out the arrangements to inform stakeholders (including the patients/staff) about what data are held, how it is used and shared and their rights.
The Guidance Note provides clear instructions about how to complete the Access Protocol Template for National IT Systems and the checklists.
Further information:
---
Quelle/Source: epractice, 08.04.2010
Bitte besuchen Sie/Please visit:
