Group to Build Privacy Data Standards

HDM Breaking News, October 9, 2008

OASIS, a Boston-based international consortium that develops e-business standards, has formed a technical committee to standardize how health care providers and payers exchange privacy policies, consent directives and authorizations. The goal is to have standard formats for the exchange of this data to further interoperability of information systems.

The work of the OASIS Cross-Enterprise Security and Privacy Authorization Technical Committee will mesh with security specifications the Healthcare Information Technology Standards Panel is developing.

But the technical committee will go beyond HITSP’s focus on standards for regulated transactions, such as the HIPAA transaction sets. The committee will specify profiles of existing OASIS standards to support reliable, auditable methods of confirming personal identity, authorization status and role-based access. Its standards will be open, meaning they will be offered for implementation on a royalty free basis.

Participation in the technical committee remains open to all interested parties. More information is available at oasis-open.org/committees/xspa.

For more information on related topics, visit the following channels:

• Data Security
• Electronic Health Records
• Health Information Exchange
• Systems Integration
• Hospitals
• Group Practices