WO2001077896A1 - Electronic record system - Google Patents

Electronic record system Download PDF

Info

Publication number
WO2001077896A1
WO2001077896A1 PCT/SG2001/000057 SG0100057W WO0177896A1 WO 2001077896 A1 WO2001077896 A1 WO 2001077896A1 SG 0100057 W SG0100057 W SG 0100057W WO 0177896 A1 WO0177896 A1 WO 0177896A1
Authority
WO
WIPO (PCT)
Prior art keywords
record
access
read
sub
individual
Prior art date
Application number
PCT/SG2001/000057
Other languages
French (fr)
Inventor
Choon Yong Loo
Original Assignee
Dr. World Pte Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Dr. World Pte Ltd. filed Critical Dr. World Pte Ltd.
Priority to AU2001256935A priority Critical patent/AU2001256935A1/en
Publication of WO2001077896A1 publication Critical patent/WO2001077896A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/40User authentication by quorum, i.e. whereby two or more security principals are required
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2147Locking files

Definitions

  • the present invention relates to electronic record systems, in particular, in the use of the electronic medical records in a Healthcare environment, via a computer or other communications network.
  • U.S. Patent No. 5,924,074 teaches a generic electronic medical record system that allows access, storage and retrieval of electronic records in a computer environment via local or wide area network via portable computers .
  • the interface to the record is via touch screen, pen-based computers and wireless network.
  • U.S. Patent No. 5,974,389 discloses a patient medical record system that looked at improved workflow procedures, allowing multiple access to the record by different care providers based on a predetermined set of rules .
  • the present invention provides a record keeping system for storing information records each of which pertains to a respective individual and comprises a plurality of sub-records, the system having: data storage means for storing said records; data input means for inputting information into said data storage means and amending said information; access control means for controlling read access and write access to said data storage means and operable to allocate read access, write access, or both read and write access for each of said sub-records and to grant read access, write access, or both read and write access for each of said sub-records in response to the provision of one or more correct user authorization codes; wherein each of said records includes at least one sub-record to which read access, write access, or both read and write access is granted by said access control means upon receipt of a plurality of said user authorization codes by said access control means.
  • a single record includes separate sub-records, each for storing different types of information, and each with a separate read and write access, but at least one of these sub-records requires the provision of at least two user authorization codes. Consequently, these codes can be given to separate users so that that sub-record can only be accessed when both or all those users provide their authorization codes. This is particularly valuable when each record pertains to a patient: the two users can then be the patient and the patient's physician.
  • a user authorization code can comprise data from any suitable authentication technique or combination of techniques, such as a password, biometric data, a pin number, or any combination of two or more of these.
  • said access control means is operable to allocate read and write access in respect of a first sub- record of a respective record to said individual, and said system is operable by said individual or by a system administrator to allocate to at least one further individual read and write access to a second sub-record of said respective record, whereby said access control means allocates read access to said further individual in respect of said first sub-record, grants said read and write access to said first sub-record when an authorization code corresponding to said individual is provided and grants said read and write access to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
  • the patient can read and write his or her own notes in the first sub-record
  • the physician can read and write his or her own notes in the second sub-record and view the patient's notes
  • both the patient's and physician's authorization codes must be provided to the access control means before the system will allow the physician to view either sub-records.
  • said access control means is operable to grant to said individual said read and write access to said first sub-record and to grant to said further individual said read and write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said access control means will grant subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
  • said at least one further person comprises a plurality of persons.
  • each person may be a natural person or a legal person.
  • said first sub-record is in the form of a diary.
  • said system is a medical record keeping system, and said information records are medical records pertaining to said individual.
  • the present invention also provides a method for providing and controlling access to a record keeping system employing the system described above.
  • the present method still further provides a method for providing and controlling access to information records each of which pertains to a respective individual and comprises a plurality of sub-records, the method involving: storing said records in a data storage means; controlling read access and write access to said data storage means, whereby read access and write access is controlled for each of said sub-records in response to the provision of one or more correct user authorization codes; and granting read access, write access, or both read and write access to at least one sub-record upon receipt of a plurality of said user authorization codes.
  • said individual is a natural person, and more preferably a patient.
  • said method includes allocating read and write access in respect of a first sub-record of a respective record to said individual, allocating to at least one further individual read and write access to a second sub- record of said respective record, whereby read access is allocated to said further individual in respect of said first sub-record, said read and write access is granted to said first sub-record when an authorization code corresponding to said individual is provided and said read and write access is granted to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
  • said method includes granting to said individual said read and write access to said first sub- record and granting to said further individual said read and. write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said method includes granting subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
  • said first sub-record is in the form of a diary.
  • said information records are medical records pertaining to said individual .
  • Figure 1 is a schematic representation of an electronic medical record according to a preferred embodiment of the present invention.
  • Figure 2 is a schematic representation of the electronic patient diary of the record of figure 1;
  • Figure 3 is a flow chart illustrating how access is gained to the physician's notes of the electronic medical record of figure 1;
  • Figure 4 is a schematic representation of the electronic diagnosis and treatment summary of the record of figure 1;
  • Figure 5 is a flow chart illustrating how access is gained by a patient to the patient's notes and diagnosis and treatment summary of the electronic medical record of figure 1;
  • FIG. 6 is a flow chart illustrating how access is gained by a patient and physician to the patient's notes, the physician's notes and the diagnosis and treatment summary of the electronic medical record of figure 1.
  • EMR electronic medical record
  • An electronic medical record (EMR) system according to a preferred embodiment of the present invention comprises an electronic computer database divided into multiple records, each corresponding to a separate patient. An example of such a record when displayed on the screen of a computer is illustrated schematically at 10 in figure 1. The system allows the identity of the patient and that patient's physician to be recorded against the record pertaining to that patient.
  • the record 10 is record is further divided into a number of sub-records corresponding to a patient diary 12, a physician's notes 14 and a diagnosis and treatment summary 16. These sub-records can only be displayed, however, when a user has provided, typically by using the computer's usual input system (such as a keyboard, or over some network) , identification so that the system can determine whether the user should be granted access to the requested record. If the user is the patient, and provides the correct authorization code in the form of a password, biometric data or personal identification number (or combination of these) , the system automatically grants that user exclusive read and write access to that user or patient's patient diary 12.
  • the user if the identification and password identify a physician, the user must then enter a password or personal identification number provided by the patient in order to gain access to that patient's record. If this is done, the user (i.e. physician) is granted initially exclusive read and write access to any physician's notes 14 requested by the user pertaining to that patient, read access to that patient's patient notes 10, and read and write access (described below) to any diagnosis and treatment summary 16.
  • the system is operable to permit a patient to annotate his or her conditions over time in patient diary 12, each entry automatically including - if desired - the date and time the entry was made.
  • the patient diary 12 itself is also operable to display an appointment schedule for that patient (not shown) .
  • the physician can add to or amend information in the physician's notes 14, also by means of any suitable input device, including a keyboard or a pressure sensitive pad and a handwriting recognition software system.
  • the physician's notes 14 can generally only be inspected by the physician, but the physician can amend his or her exclusive access to allow colleagues or other authorised parties access as required, as can the system administrator.
  • the diagnosis and treatment summary 16 comprises a summary of the condition of the patient, and is augmented during or after each time the patient is seen by the physician (again, provided that the patient supplies the appropriate sign-in details) .
  • This section 16 includes details of the treatment and prescription of drugs for that patient.
  • the system can be accessed remotely, and the above functions performed, provided that each user (patient or physician) provides the necessary identification and password. This means that a patient can arrange for his or her physician to give a physician in another clinic or even country access to any needed medical records .
  • Figure 2 schematically illustrates generally at 18 the patient diary 12, which itself includes multiple fields including calendar 20, annotations of personal medical conditions 22 and appointment scheduler 24.
  • This allows the patient to record notes of how he or she feels on particular days (i.e. in the calendar 20), schedule appointments to see a physician by means of appointment scheduler 24, and provide access to the patient's account of his or her conditions to other Healthcare providers.
  • the physician's notes 14 are generally only accessible by the physician.
  • the physician's notes 14 are accessed by an interface for the physician to input information that can only be accessed by the physician.
  • the physician will be able to scribble notes concerning the diagnosis and treatment of the patient, by means of a pen- based device, a keyboard or a voice recognition interface.
  • Figure 3 is a flow chart illustrating this feature 26: when a physician attempts to gain access 28 to a patient's records, the system determines the access to those records by first enquiring 30 of its own records if this patient is being cared for by a group practice. If the answer is no, only the patient's individual physician is granted access 34 to the physician's notes 14. If the answer is yes, all physicians in the group practice are granted access 34.
  • Figure 4 schematically illustrates generally at 36 the diagnosis and treatment summary 16, where write access is given only to qualified Healthcare providers (generally the physician) and not to the patient.
  • the patient, and physician who has entered this information and other Healthcare providers have read access to the diagnosis and treatment summary 16 for each visit.
  • the physician's notes 14 are placed in the same medical record 10, each physician will have exclusive access to his/her own notes 14.
  • the diagnosis and treatment summary 16 - as well as including actual details of diagnoses and treatments 38 includes details of prescriptions 40, a memo pad 42 in which the physician can provide a summary of the medical condition(s) , and details of the patient's previous visits 44. This facilitates better care for the patient, as each Healthcare provider has ready access to details of medical conditions being treated by more than one physician.
  • the system allows convenient reference to past attendances by each patient.
  • the physician can access details of any visits made by any of his or her patients to other physicians, and ascertain the treatment that was given on those occasions.
  • the system can be used to provide point of care consultations to the patient by the physician, and for the patient to provide an account of the patient's medical history, both as recorded by the patient and as recorded by other Healthcare providers in their respective areas.
  • the system also allows the monitoring of a patient's health remotely via wide-area networks or wireless networks. Annotations made by the patient on the patient's health can be captured by the patient in the patient's diary 12. In addition, specific questions and readings can be entered by the patient into the system as guided and determined by Healthcare providers.
  • the system also includes diagnosis software, operable to infer the health conditions of a patient by comparing the medical information entered by patient and physician (s) with a medical database according to recognized rules, and weighted according to whether the information comprises subjective impressions of the patient or the diagnoses of the physician(s) .
  • diagnosis software operable to infer the health conditions of a patient by comparing the medical information entered by patient and physician (s) with a medical database according to recognized rules, and weighted according to whether the information comprises subjective impressions of the patient or the diagnoses of the physician(s) .
  • the system is configured to then alert the relevant physician or Healthcare giver to the medical conditions of the patient.
  • FIG. 5 A scenario where a patient is accessing the system is illustrated in flow chart 46 in figure 5, in which the patient is accessing the system from a remote location 48.
  • the patient must first provide sign-in details 50 so that - li ⁇
  • the system can authenticate the patient's identity. If the details provided are incorrect, the system enquires 52 if the details have been forgotten. If so, procedures for the patient to recover the sign-in information are provided 54. If the correct details are provided and of the patient is verified, the patient's record is displayed 56. As described above, the patient is then given read access 58 to the patient's diary 12 and the diagnosis and treatment summary 16 and write access 60 to the patient's diary 12. No access is granted to the physician's notes 14. After completing the session, the patient indicates that the access should be terminated 62.
  • the interaction of the patient with a physician during a visit to the Healthcare facility is illustrated in flow chart 64 shown in figure 6.
  • the physician must identify himself or herself 74 to the system in gain access to use the system. All physicians accessing the system must have been pre- registered with the system.
  • the system prompts 76 the physician for sign in details; once signed in, the systems prompts for patient sign-in details 78: when a patient arrives, he or she will supply sign-in details so that the physician can identify and access that patient's record. If incorrect patient details are entered, the system enquires 80 as to whether the details have been forgotten.
  • the physician can override 82 this and - to ensure that the system does not result in unnecessary access by Healthcare providers - the system will check with the patient at a later stage that the physician's access has been legitimate. From this point, once appropriate sign-in/over-ride details have been provided, access is granted 84.
  • the physician has read access 86 to the patient's diary 12, and read and write access 88 to that physician's notes 14 and to the diagnosis and treatment summary 16.
  • the system allows Healthcare providers and patients to keep a record of the patient's medical conditions, and Healthcare providers and patients to be alerted on the basis of appointment schedules, health monitoring and medical conditions.
  • the medical record system is accessible by patients, physicians and other Healthcare professionals to whom access has been granted.
  • Access to the patient's records can be done remotely using any means of transmission such as wide area network, wireless network and with any devices, not limiting to such devices like mobile telephones, personal digital assistant, computers and dedicated monitoring devices. With such access, transaction capabilities will be made possible such as appointment scheduling, appointment alerts, health conditions, laboratory results, alerts of any nature pertaining to visits made to physicians, laboratories, pharmacies, and any other Healthcare facilities.
  • the advantage of the present invention is its practicality in implementing an electronic medical record system that gives power to the patient to assign rights to a Healthcare giver.
  • the system allows the Healthcare provider to accept inputs that are both proprietary and public.
  • the system thus provides significant benefits to both the patient and the Healthcare provider, allowing each to access and interact with the system resulting in efficient health record management.
  • the system will provide Healthcare providers with a summary of the medical conditions of the patient based on the information entered over time. With this more accessible information, physicians will be able to consult each other through the sharing of the physician's notes and memos, as well as any access granted by the patient. Physicians will be able to refer the patient to more specialized care when required.
  • the system will also be able to advise the patient on the patient's diet and provide health tips based on the medical conditions captured.
  • Personalised health advice will be formulated and patient will be able to access the advice when needed.
  • the system can therefore provide personalized information to Healthcare facilities, providers and products that can assist the patient in managing his or her own medical conditions.
  • the system allows the patient to search for information that relates to the patient's conditions.
  • Another advantage is that the system can provide worldwide care providers access to the patient's record that will assist any Healthcare giver in providing medical aid to the patient.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Medical Informatics (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Bioethics (AREA)
  • Public Health (AREA)
  • Primary Health Care (AREA)
  • Epidemiology (AREA)
  • Databases & Information Systems (AREA)
  • Measuring And Recording Apparatus For Diagnosis (AREA)

Abstract

The present invention provides a record keeping system for storing information records, and a method for providing and controlling access to such records, each of which pertains to a respective individual and comprises a plurality of sub-records, the system having: a data storage means for storing the records; data input means for inputting information into the data storage means and amending the information; access control means for controlling read access and write access to the data storage means and operable to allocate read access, write access, or both read and write access for each of the sub-records and to grant read access, write access, or both read and write access for each of the sub-records in response to the provision of one or more correct user authorization codes; wherein each of the records includes at least one sub-record to which read access, write access, or both read and write access is granted by the access control means upon receipt of a plurality of the user authorization codes by the access control means.

Description

ELECTRONIC RECORD SYSTEM
The present invention relates to electronic record systems, in particular, in the use of the electronic medical records in a Healthcare environment, via a computer or other communications network.
BACKGROUND TO THE INVENTION
Healthcare providers have large quantities of information pertaining to patients that are recorded manually, either by being written as paper based records or by manual entering into a database. When a patient visits a clinic, hospital, and laboratory, a record of the patient's visit is made. Each facility keeps its own records of the patient. Accessing a patient's medical information pertinent to a particular condition is often difficult, as that information may be stored remotely or as paper-based records. In the latter case, the information may take a considerable time to be transported to the facility where the patient is in attendance.
Medical records have become more complex, including more information, all of which must be stored, retrieved and transmitted on demand. Historically, in addition, handwritten records lacked sufficient clarity, were difficult to search and contained non-standard abbreviations or terminology.
Some existing attempts to standardize medical records have been poorly received by Healthcare providers. Electronic medical record systems have accommodated the characteristics of the computers than the needs or demands of the users, typically the physicians, nurses and patients. Emphasis on efficiency has resulted in systems that are not user- friendly. Many of the existing manual practices have been preserved as an adjunct to such systems, actually adding a level of redundancy and inefficiency. Further, existing systems lack simplicity.
U.S. Patent No. 5,924,074 teaches a generic electronic medical record system that allows access, storage and retrieval of electronic records in a computer environment via local or wide area network via portable computers . The interface to the record is via touch screen, pen-based computers and wireless network.
U.S. Patent No. 5,974,389 discloses a patient medical record system that looked at improved workflow procedures, allowing multiple access to the record by different care providers based on a predetermined set of rules .
SUMMARY OF THE INVENTION
Accordingly, therefore, the present invention provides a record keeping system for storing information records each of which pertains to a respective individual and comprises a plurality of sub-records, the system having: data storage means for storing said records; data input means for inputting information into said data storage means and amending said information; access control means for controlling read access and write access to said data storage means and operable to allocate read access, write access, or both read and write access for each of said sub-records and to grant read access, write access, or both read and write access for each of said sub-records in response to the provision of one or more correct user authorization codes; wherein each of said records includes at least one sub-record to which read access, write access, or both read and write access is granted by said access control means upon receipt of a plurality of said user authorization codes by said access control means.
Preferably said individual is a natural person, and more preferably a patient. Thus, a single record includes separate sub-records, each for storing different types of information, and each with a separate read and write access, but at least one of these sub-records requires the provision of at least two user authorization codes. Consequently, these codes can be given to separate users so that that sub-record can only be accessed when both or all those users provide their authorization codes. This is particularly valuable when each record pertains to a patient: the two users can then be the patient and the patient's physician.
A user authorization code can comprise data from any suitable authentication technique or combination of techniques, such as a password, biometric data, a pin number, or any combination of two or more of these.
Preferably said access control means is operable to allocate read and write access in respect of a first sub- record of a respective record to said individual, and said system is operable by said individual or by a system administrator to allocate to at least one further individual read and write access to a second sub-record of said respective record, whereby said access control means allocates read access to said further individual in respect of said first sub-record, grants said read and write access to said first sub-record when an authorization code corresponding to said individual is provided and grants said read and write access to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
Thus, where the individual is a patient and the further individual is a physician, the patient can read and write his or her own notes in the first sub-record, while the physician can read and write his or her own notes in the second sub-record and view the patient's notes, but both the patient's and physician's authorization codes must be provided to the access control means before the system will allow the physician to view either sub-records.
More preferably said access control means is operable to grant to said individual said read and write access to said first sub-record and to grant to said further individual said read and write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said access control means will grant subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
In one embodiment said at least one further person comprises a plurality of persons.
Thus, although the sub-records together constitute a single record, access to each is restricted to specific persons. It should be noted that each person may be a natural person or a legal person.
Preferably said first sub-record is in the form of a diary.
Preferably said system is a medical record keeping system, and said information records are medical records pertaining to said individual.
The present invention also provides a method for providing and controlling access to a record keeping system employing the system described above. The present method still further provides a method for providing and controlling access to information records each of which pertains to a respective individual and comprises a plurality of sub-records, the method involving: storing said records in a data storage means; controlling read access and write access to said data storage means, whereby read access and write access is controlled for each of said sub-records in response to the provision of one or more correct user authorization codes; and granting read access, write access, or both read and write access to at least one sub-record upon receipt of a plurality of said user authorization codes.
Preferably said individual is a natural person, and more preferably a patient.
Preferably said method includes allocating read and write access in respect of a first sub-record of a respective record to said individual, allocating to at least one further individual read and write access to a second sub- record of said respective record, whereby read access is allocated to said further individual in respect of said first sub-record, said read and write access is granted to said first sub-record when an authorization code corresponding to said individual is provided and said read and write access is granted to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
More preferably said method includes granting to said individual said read and write access to said first sub- record and granting to said further individual said read and. write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said method includes granting subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
Preferably said first sub-record is in the form of a diary.
Preferably said information records are medical records pertaining to said individual .
BRIEF DESCRIPTION OF THE DRAWING
In order that the present invention may be more clearly ascertained, a preferred embodiment will now be described, by way of example, with reference to the accompanying drawing, in which:
Figure 1 is a schematic representation of an electronic medical record according to a preferred embodiment of the present invention;
Figure 2 is a schematic representation of the electronic patient diary of the record of figure 1;
Figure 3 is a flow chart illustrating how access is gained to the physician's notes of the electronic medical record of figure 1;
Figure 4 is a schematic representation of the electronic diagnosis and treatment summary of the record of figure 1;
Figure 5 is a flow chart illustrating how access is gained by a patient to the patient's notes and diagnosis and treatment summary of the electronic medical record of figure 1; and
Figure 6 is a flow chart illustrating how access is gained by a patient and physician to the patient's notes, the physician's notes and the diagnosis and treatment summary of the electronic medical record of figure 1. DETAILED DESCRIPTION OF THE PREFERED EMBODIMENT An electronic medical record (EMR) system according to a preferred embodiment of the present invention comprises an electronic computer database divided into multiple records, each corresponding to a separate patient. An example of such a record when displayed on the screen of a computer is illustrated schematically at 10 in figure 1. The system allows the identity of the patient and that patient's physician to be recorded against the record pertaining to that patient. The record 10 is record is further divided into a number of sub-records corresponding to a patient diary 12, a physician's notes 14 and a diagnosis and treatment summary 16. These sub-records can only be displayed, however, when a user has provided, typically by using the computer's usual input system (such as a keyboard, or over some network) , identification so that the system can determine whether the user should be granted access to the requested record. If the user is the patient, and provides the correct authorization code in the form of a password, biometric data or personal identification number (or combination of these) , the system automatically grants that user exclusive read and write access to that user or patient's patient diary 12. Alternatively, if the identification and password identify a physician, the user must then enter a password or personal identification number provided by the patient in order to gain access to that patient's record. If this is done, the user (i.e. physician) is granted initially exclusive read and write access to any physician's notes 14 requested by the user pertaining to that patient, read access to that patient's patient notes 10, and read and write access (described below) to any diagnosis and treatment summary 16.
The system is operable to permit a patient to annotate his or her conditions over time in patient diary 12, each entry automatically including - if desired - the date and time the entry was made. The patient diary 12 itself is also operable to display an appointment schedule for that patient (not shown) . The physician can add to or amend information in the physician's notes 14, also by means of any suitable input device, including a keyboard or a pressure sensitive pad and a handwriting recognition software system. The physician's notes 14 can generally only be inspected by the physician, but the physician can amend his or her exclusive access to allow colleagues or other authorised parties access as required, as can the system administrator.
The diagnosis and treatment summary 16 comprises a summary of the condition of the patient, and is augmented during or after each time the patient is seen by the physician (again, provided that the patient supplies the appropriate sign-in details) . This section 16 includes details of the treatment and prescription of drugs for that patient.
The system can be accessed remotely, and the above functions performed, provided that each user (patient or physician) provides the necessary identification and password. This means that a patient can arrange for his or her physician to give a physician in another clinic or even country access to any needed medical records .
Figure 2 schematically illustrates generally at 18 the patient diary 12, which itself includes multiple fields including calendar 20, annotations of personal medical conditions 22 and appointment scheduler 24. This allows the patient to record notes of how he or she feels on particular days (i.e. in the calendar 20), schedule appointments to see a physician by means of appointment scheduler 24, and provide access to the patient's account of his or her conditions to other Healthcare providers. As mentioned above, the physician's notes 14 are generally only accessible by the physician. The physician's notes 14 are accessed by an interface for the physician to input information that can only be accessed by the physician. The physician will be able to scribble notes concerning the diagnosis and treatment of the patient, by means of a pen- based device, a keyboard or a voice recognition interface. As described above, however, the physician can grant access to the notes to others. In group practice, for example, where a group of physicians is working as one organisation, the physician or group can grant access to the physician's notes to all the other physicians in the same practice. Figure 3 is a flow chart illustrating this feature 26: when a physician attempts to gain access 28 to a patient's records, the system determines the access to those records by first enquiring 30 of its own records if this patient is being cared for by a group practice. If the answer is no, only the patient's individual physician is granted access 34 to the physician's notes 14. If the answer is yes, all physicians in the group practice are granted access 34.
Figure 4 schematically illustrates generally at 36 the diagnosis and treatment summary 16, where write access is given only to qualified Healthcare providers (generally the physician) and not to the patient. The patient, and physician who has entered this information and other Healthcare providers have read access to the diagnosis and treatment summary 16 for each visit. Although the physician's notes 14 are placed in the same medical record 10, each physician will have exclusive access to his/her own notes 14. To share notes with other Healthcare professionals on a more open basis, the diagnosis and treatment summary 16 - as well as including actual details of diagnoses and treatments 38, includes details of prescriptions 40, a memo pad 42 in which the physician can provide a summary of the medical condition(s) , and details of the patient's previous visits 44. This facilitates better care for the patient, as each Healthcare provider has ready access to details of medical conditions being treated by more than one physician.
Thus, the system allows convenient reference to past attendances by each patient. The physician can access details of any visits made by any of his or her patients to other physicians, and ascertain the treatment that was given on those occasions.
The system can be used to provide point of care consultations to the patient by the physician, and for the patient to provide an account of the patient's medical history, both as recorded by the patient and as recorded by other Healthcare providers in their respective areas. In particular, the system also allows the monitoring of a patient's health remotely via wide-area networks or wireless networks. Annotations made by the patient on the patient's health can be captured by the patient in the patient's diary 12. In addition, specific questions and readings can be entered by the patient into the system as guided and determined by Healthcare providers.
The system also includes diagnosis software, operable to infer the health conditions of a patient by comparing the medical information entered by patient and physician (s) with a medical database according to recognized rules, and weighted according to whether the information comprises subjective impressions of the patient or the diagnoses of the physician(s) . The system is configured to then alert the relevant physician or Healthcare giver to the medical conditions of the patient.
A scenario where a patient is accessing the system is illustrated in flow chart 46 in figure 5, in which the patient is accessing the system from a remote location 48. The patient must first provide sign-in details 50 so that - li ¬
the system can authenticate the patient's identity. If the details provided are incorrect, the system enquires 52 if the details have been forgotten. If so, procedures for the patient to recover the sign-in information are provided 54. If the correct details are provided and of the patient is verified, the patient's record is displayed 56. As described above, the patient is then given read access 58 to the patient's diary 12 and the diagnosis and treatment summary 16 and write access 60 to the patient's diary 12. No access is granted to the physician's notes 14. After completing the session, the patient indicates that the access should be terminated 62.
The interaction of the patient with a physician during a visit to the Healthcare facility is illustrated in flow chart 64 shown in figure 6. During or following the visit 72, the physician must identify himself or herself 74 to the system in gain access to use the system. All physicians accessing the system must have been pre- registered with the system. If not signed in, the system prompts 76 the physician for sign in details; once signed in, the systems prompts for patient sign-in details 78: when a patient arrives, he or she will supply sign-in details so that the physician can identify and access that patient's record. If incorrect patient details are entered, the system enquires 80 as to whether the details have been forgotten. If so, the physician can override 82 this and - to ensure that the system does not result in unnecessary access by Healthcare providers - the system will check with the patient at a later stage that the physician's access has been legitimate. From this point, once appropriate sign-in/over-ride details have been provided, access is granted 84. The physician has read access 86 to the patient's diary 12, and read and write access 88 to that physician's notes 14 and to the diagnosis and treatment summary 16. The system allows Healthcare providers and patients to keep a record of the patient's medical conditions, and Healthcare providers and patients to be alerted on the basis of appointment schedules, health monitoring and medical conditions. The medical record system is accessible by patients, physicians and other Healthcare professionals to whom access has been granted.
Access to the patient's records can be done remotely using any means of transmission such as wide area network, wireless network and with any devices, not limiting to such devices like mobile telephones, personal digital assistant, computers and dedicated monitoring devices. With such access, transaction capabilities will be made possible such as appointment scheduling, appointment alerts, health conditions, laboratory results, alerts of any nature pertaining to visits made to physicians, laboratories, pharmacies, and any other Healthcare facilities.
The advantage of the present invention is its practicality in implementing an electronic medical record system that gives power to the patient to assign rights to a Healthcare giver. The system allows the Healthcare provider to accept inputs that are both proprietary and public. The system thus provides significant benefits to both the patient and the Healthcare provider, allowing each to access and interact with the system resulting in efficient health record management. The system will provide Healthcare providers with a summary of the medical conditions of the patient based on the information entered over time. With this more accessible information, physicians will be able to consult each other through the sharing of the physician's notes and memos, as well as any access granted by the patient. Physicians will be able to refer the patient to more specialized care when required.
With comprehensive records of the patient's medical conditions, the system will also be able to advise the patient on the patient's diet and provide health tips based on the medical conditions captured. Personalised health advice will be formulated and patient will be able to access the advice when needed.
The system can therefore provide personalized information to Healthcare facilities, providers and products that can assist the patient in managing his or her own medical conditions. The system allows the patient to search for information that relates to the patient's conditions.
Another advantage is that the system can provide worldwide care providers access to the patient's record that will assist any Healthcare giver in providing medical aid to the patient.
The features and advantages described here are not all- inclusive, and particularly, many additional features and advantages may be apparent to one of ordinary skills in the art in view of the drawings, specifications and claims. Those skilled in the art may practise the principles of the present invention in other forms without departing from its spirit or essential characteristics. The described embodiment is merely illustrative and does not serve to limit the scope of the invention set forth.

Claims

CLAIMS :
1. A record keeping system for storing information records each of which pertains to a respective individual and comprises a plurality of sub-records, the system having: data storage means for storing said records; data input means for inputting information into said data storage means and amending said information; access control means for controlling read access and write access to said data storage means and operable to allocate read access, write access, or both read and write access for each of said sub-records and to grant read access, write access, or both read and write access for each of said sub-records in response to the provision of one or more correct user authorization codes; wherein each of said records includes at least one sub-record to which read access, write access, or both read and write access is granted by said access control means upon receipt of a plurality of said user authorization codes by said access control means.
2. A record keeping system as claimed in claim 1, wherein said individual is a natural person.
3. A record keeping system as claimed in claim 1, wherein said individual is a patient.
4. A record keeping system as claimed in claim 1, wherein each of said user authorization codes comprises data from any suitable authentication technique or combination of techniques .
5. A record keeping system as claimed in claim 4, wherein each of said user authorization codes comprises a password, biometric data, a pin number, or any combination thereof.
6. A record keeping system as claimed in any one of the
..-r-mM ΛΛΓM preceding claims, wherein said access control means is operable to allocate read and write access in respect of a first sub-record of a respective record to said individual, and said system is operable by said individual or by a system administrator to allocate to at least one further individual read and write access to a second sub-record of said respective record, whereby said access control means allocates read access to said further individual in respect of said first sub-record, grants said read and write access to said first sub-record when an authorization code corresponding to said individual is provided and grants said read and write access to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
7. A record keeping system as claimed in claim 6, wherein said access control means is operable to grant to said individual said read and write access to said first sub- record and to grant to said further individual said read and write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said access control means will grant subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
8. A record keeping system as claimed in either claim 6 or 7, wherein said at least one further person comprises a plurality of persons.
9. A record keeping system as claimed in any one of the preceding claims, wherein said first sub-record is in the form of a diary.
10. A record keeping system as claimed in any one of the preceding claims, wherein said system is a medical record keeping system, and said information records are medical records pertaining to said individual .
11. A method for providing and controlling access to a record keeping system by means of the system claimed in any one of the preceding claims .
12. A method for providing and controlling access to information records each of which pertains to a respective individual and comprises a plurality of sub-records, the method involving: storing said records in a data storage means; controlling read access and write access to said data storage means, whereby read access and write access is controlled for each of said sub-records in response to the provision of one or more correct user authorization codes; and granting read access, write access, or both read and write access to at least one sub-record upon receipt of a plurality of said user authorization codes.
13. A method as claimed in claim 12, wherein said individual is a patient.
14. A record keeping system as claimed in claim 12, wherein each of said user authorization codes comprises data from any suitable authentication technique or combination of techniques.
15. A record keeping system as claimed in claim 14, wherein each of said user authorization codes comprises a password, biometric data, a pin number, or any combination thereof.
16. A method as claimed in any one of claims 12 to 15, including allocating read and write access in respect of a first sub- ecord of a respective record to said individual, allocating to at least one further individual read and write access to a second sub-record of said respective record, whereby read access is allocated to said further individual in respect of said first sub-record, said read and write access is granted to said first sub-record when an authorization code corresponding to said individual is provided and said read and write access is granted to said second sub-record and read access to said first sub-record to said further individual when said individual's authorization code and an authorization code corresponding to said further individual are provided.
17. A method as claimed in claim 16, including granting to said individual said read and write access to said first sub-record and granting to said further individual said read and write access to said second sub-record and read access to said first sub-record upon the provision of only one of said individual's authorisation code and said further individual's authorization code provided that an emergency authorization code is provided, whereby said method includes granting subsequent access only after the other of said individual's authorization code and said further individual's authorization code has been provided.
18. A record keeping system as claimed in either claim 16 or 17, wherein said at least one further person comprises a plurality of persons.
19. A method as claimed in any one of claims 12 to 18, wherein said first sub-record is in the form of a diary.
20. A method as claimed in any one of claims 12 to 19, wherein said information records are medical records pertaining to said individual.
PCT/SG2001/000057 2000-04-07 2001-04-06 Electronic record system WO2001077896A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001256935A AU2001256935A1 (en) 2000-04-07 2001-04-06 Electronic record system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
AUPQ6780A AUPQ678000A0 (en) 2000-04-07 2000-04-07 Electronic record system
AUPQ6780 2000-04-07

Publications (1)

Publication Number Publication Date
WO2001077896A1 true WO2001077896A1 (en) 2001-10-18

Family

ID=3820875

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/SG2001/000057 WO2001077896A1 (en) 2000-04-07 2001-04-06 Electronic record system

Country Status (2)

Country Link
AU (1) AUPQ678000A0 (en)
WO (1) WO2001077896A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9232402B2 (en) 2013-11-21 2016-01-05 At&T Intellectual Property I, L.P. System and method for implementing a two-person access rule using mobile devices
EP1864467B1 (en) * 2005-04-01 2020-05-06 Nxp B.V. Phone with secure element and critical data
US20220138411A1 (en) * 2020-11-03 2022-05-05 Nuance Communications, Inc. Communication System and Method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5325294A (en) * 1992-06-29 1994-06-28 Keene Sharon A Medical privacy system
EP0770997A2 (en) * 1995-10-27 1997-05-02 Ncr International Inc. Password protection for removable hard drive
EP0810764A2 (en) * 1996-05-31 1997-12-03 Siemens Business Communication Systems Inc. Method of providing limited access to preserve privacy within a message system
EP0913966A2 (en) * 1997-10-31 1999-05-06 Sun Microsystems, Inc. Distributed system and method for controlling acces to network resources

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5325294A (en) * 1992-06-29 1994-06-28 Keene Sharon A Medical privacy system
EP0770997A2 (en) * 1995-10-27 1997-05-02 Ncr International Inc. Password protection for removable hard drive
EP0810764A2 (en) * 1996-05-31 1997-12-03 Siemens Business Communication Systems Inc. Method of providing limited access to preserve privacy within a message system
EP0913966A2 (en) * 1997-10-31 1999-05-06 Sun Microsystems, Inc. Distributed system and method for controlling acces to network resources

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1864467B1 (en) * 2005-04-01 2020-05-06 Nxp B.V. Phone with secure element and critical data
US9232402B2 (en) 2013-11-21 2016-01-05 At&T Intellectual Property I, L.P. System and method for implementing a two-person access rule using mobile devices
US9621556B2 (en) 2013-11-21 2017-04-11 At&T Intellectual Property I, L.P. System and method for implementing a two-person access rule using mobile devices
US10419435B2 (en) 2013-11-21 2019-09-17 At&T Intellectual Property I, L.P. System and method for implementing a two-person access rule using mobile devices
US20220138411A1 (en) * 2020-11-03 2022-05-05 Nuance Communications, Inc. Communication System and Method
US11956315B2 (en) 2020-11-03 2024-04-09 Microsoft Technology Licensing, Llc Communication system and method

Also Published As

Publication number Publication date
AUPQ678000A0 (en) 2000-05-11

Similar Documents

Publication Publication Date Title
USRE46866E1 (en) System for maintaining patient medical records for participating patients
US20070005396A1 (en) Method and device for maintaining and providing access to electronic clinical records
US20050010442A1 (en) Health information database creation and secure access system and method
US8639529B2 (en) Method and device for maintaining and providing access to electronic clinical records
US6988075B1 (en) Patient-controlled medical information system and method
US8301462B2 (en) Systems and methods for disease management algorithm integration
US20070005397A1 (en) Method and device for maintaining and providing access to electronic clinical records
US20020032584A1 (en) Health care payment compliance management
US20060106646A1 (en) Medical kiosk with multiple input sources
US20060293925A1 (en) System for storing medical records accessed using patient biometrics
US20040122701A1 (en) Systems and methods for integrating disease management into a physician workflow
US20040103000A1 (en) Portable system and method for health information storage, retrieval, and management
US20020019749A1 (en) Method and apparatus for facilitating delivery of medical services
US20030037065A1 (en) Method and apparatus for using medical ID smart card
US20030195774A1 (en) Medical practice management system
US20060229919A1 (en) Internet medical information system (IMED)
US20030177030A1 (en) Patient information system and method of using same
WO2002086662A2 (en) Mobile devices for medical applications
US20110054924A1 (en) Patient communications device
US20030163350A1 (en) Automated system facilitating interactions between physicians and medical services or equipment providers
WO2001077896A1 (en) Electronic record system
US20090012819A1 (en) Systems and methods for electronic hospital form completion
Oyama et al. Desktop and mobile software development for surgical practice
US20220068447A1 (en) Personal care management system and method
Udofia Electronic Health Record Adoption, Interoperability, and Consumer Access

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 69(1) EPC EPO FORM 1205A SENT ON 14.02.03

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP