Patient Access Information for Developers & EHR Vendors
When developing electronic health records (EHRs), developers need to take into account important privacy and security obligations of their users, which include ensuring that patients can easily get, check and use their information. Search the resources below for the latest guidance on privacy, interoperability, and certification.
Patient Access Resources for Developers & EHR Vendors Technical Guidance
U.S. Core Data for Interoperability
A common set of data classes are required for interoperable exchange of health information. Learn more about ONC’s U.S. Core Data for Interoperability (USCDI).
Resource
Technical Implementation Guides for Health Apps and APIs
This guide explains the key considerations for implementing and managing APIs in health care with privacy and security of health information in mind.
Resource
Mobile Health Apps Interactive Tool
Developing a mobile health app? Use this interactive tool to find out which federal laws you need to follow, including the health insurance portability and accountability act (HIPAA).
Resource
Privacy & Security
Health Information Privacy
Find answers to frequently asked questions about HIPAA, Protected Health Information, Security Rules, and more from the Department of Health and Human Services.
Resource
Security Risk Assessment (SRA) Tool
The SRA tool is designed to help healthcare providers conduct a security risk assessment as required by the HIPAA Security Rule.
RESOURCE
eConsent Toolkit
The eConsent Trial Project developed way to gather patients’ input electronically on areas in which they want to learn more about consent, educate patients in a provider setting about electronic sharing of their health information through a Health Information Exchange Organization, and capture and record choices patients make.