HIPAAT Overview
Consent Management & Auditing
Standards and Technology
Partners
 

Contact Us

Request Demo

Standards

We are participating members of the Organization for the Advancement of Structured Information Standards (OASIS).  We remain current with international standards initiatives such as Infoway’s Standards Collaborative (Canada), Health Level Seven (HL7) and Integrating the Healthcare Enterprise (IHE).

Our technology is informed by the following constructs, profiles and standards:

Health Level Seven (HL7)  
Clinical Context Object Workgroup (CCOW)
Clinical Document Architecture (CDA)
Community-Based Collaborative Care (CBCC)
Privacy, Access, and Security Services (PASS) Project

 

Health Information Technology Standards Panel (HITSP)
Access Control Transaction Package (TP 20)
Access Control Service Collaboration (SC 108)
Collect and Communicate Security Audit Trail (T 15)
Security Audit Service Collaboration (SC 109)
Manage Consent Directives Transaction Package (TP 30)

 

Integrating the Healthcare Enterprise (IHE)
Cross-Enterprise Document Sharing (XDS.b)

 

Organization for the Advancement of Structured Information Standards (OASIS)
eXtensible Access Control Markup Language (XACML)  
Cross-Enterprise Security and Privacy Authorization (XSPA)  
WSRP: Web Services for Remote Portlets Specification v2.0  

 

Other
JSR 286: Portlet Specification 2.0  
RFC 3881 Security Audit and Access Accountability Message XML Data Definitions for Healthcare Applications

Technology

Learn about our core standards-based solutions:

Consent Management

myConsentMinder (myCM)
A web-based application that allows patients and consumers to manage their health information privacy preferences, including their consent to share personal health information (PHI). Learn more.

Privacy eSuite (PeS)
HIPAAT’s web-based ‘consent engine’ that enables hospitals, health networks, HIEs, HIOs and physician practices to implement consumer, organizational and jurisdictional privacy policies. Learn more.

Privacy Manager (PM)
Our point-of-care software application that enables healthcare organizations to enforce consumer, organizational and jurisdictional privacy policies. Learn more.

Auditing

Universal Audit Repository (UAR)
HIPAAT’s standalone central repository of IHE-ATNA audit events.  Designed for use by hospitals, health networks, HIEs, HIOs and physician practices, it logs all access – and attempted access – to PHI and privacy policies, and generates security alerts for ‘break-the-glass’ access. Learn more.