On Mon, 25 Nov 1996 23:2 GMT0, Andrew N. Herd wrote in reply to Rob
Tweed:
>Rob> Not so - if you use the Web browser as a "dumb terminal" to access the
>> record in situ at a remote site (remember the record fo a patient can
>> be distributed across many sites/systems), then access control to the
>> data is the responsibility of the organisation that captured the info
>> in the first place - via an access control list.
>
>Andrew>That's my point - who will hold the material, the GP? Health Web services
>Ltd? Reuters?
Whoever originated it is responsible - and can hold it wherever they
want.
If it originated in a GP practice, it can stay there - in a hospital,
then it stays in their system, remembering that some hospitals have
FM'd (Facilities managed) out their systems which are physically
located off-site.
Rather than message data around in advance of when it is actually
wanted, by waiting until someone comes to you (GP) to ask for access
to the "bit" which you hold, you retain greater control who gets to
see it (as long as you know who's asking for it, why and have patient
consent to share)
And IMHO that works both ways - hospital clinician - in conjunction
with patient - must decide whether to include the GP on the access
control record for any data created - and kept - at the hospital.
___________________________________________________________________________
John Farenden - Secta / Health Web Services
Triton House, Hare Park Lane, Liversedge, West Yorkshire, England, WF15 8HN
Tel 01274 852160, Fax 01274 852159
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|