Is this a one-time authorization? - PCDE #136

XMLWordPrintableJSON

    • Type: Change Request
    • Resolution: Not Persuasive
    • Priority: Medium
    • US Da Vinci PCDE (FHIR)
    • STU3
    • Financial Mgmt
    • (profiles) [deprecated]
    • 4.2.3
    • Hide

      OAuth is used to grant access from a current payer to prior payer to obtain information. There is currently no ability in OAuth to restrict that information to a specific treatment. It is up to the plan assembling the document to respect HIPAA, state and federal regulations, and where appropriate, patient preferences.

      Show
      OAuth is used to grant access from a current payer to prior payer to obtain information. There is currently no ability in OAuth to restrict that information to a specific treatment. It is up to the plan assembling the document to respect HIPAA, state and federal regulations, and where appropriate, patient preferences.
    • Lloyd McKenzie/Jean Duteau: 17-0-0

      Existing Wording: By using the SMART on FHIR implementation of OAuth 2.0 and providing an appropriate access token from a prior prayer plan to the new plan, the new plan's application can authenticate to the prior plan and gain access to the specific member's data.

      Comment:

      Is this a one-time authorization? Is it limited in scope based on the condition/treatment the member wants covered? There should be consideration and clarification to ensure the patient controls their flow of information in such a manner

      Summary:

      Is this a one-time authorization?

            Assignee:
            Unassigned
            Reporter:
            Terrence Cunningham
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: