Abstract
This specification covers the relationship between a person (consumer), organization, or custodian (or other authorized representative) and a managing (storing) organization (such as a web site or other organization). This will provide guidance to consumers, suppliers of personal (consumer) health records (PCHR) applications, and the public at large regarding the PCHR. Because the PCHR is distinct from the provider-based patient health record (PHR), the laws and conventions for provider-based patient health records may not apply to the PCHR. The PCHR supplier shall allow a consumer or other authorized individual easy access at any point in the PCHR application to the policies and standards to which the PCHR supplier site adheres, as well as their associated charges, if any. In a PCHR application, a consumer has the right to know about the following: the PCHR supplier's business model or a general outline of how its revenues are generated; how PCHR information is handled; how to get a copy of the PCHR; the extent of data mining, whether it is in aggregate or de-identified form, as well as options for opting-out of such data mining activities; PCHR supplier's privacy policy; options for transferring the PCHR to another supplier or elsewhere; provisions for identifying the audit trail for access to the consumer record when suppliers change and when changes occur in the business enterprise under which the supplier and record keeper operates; in case the business enterprise changes, the reissuance of privacy statements and positive reconfirmation of postal and mail address by the consumer following any corporate changes is recommended; and how to request deletion or destruction, or both, of a personal file at a PCHR supplier's system.
This abstract is a brief summary of the referenced standard. It is informational only and not an official part of the standard; the full text of the standard itself must be referred to for its use and application. ASTM does not give any warranty express or implied or make any representation that the contents of this abstract are accurate, complete or up to date.
1. Scope
1.1 This specification covers the relationship between a person (consumer), organization, or custodian (or other authorized representative) and a managing (storing) organization (such as a web site or other organization). However, web-based personal (consumer) health records that are created by healthcare providers or health plans are not within the scope of this specification. Further, this specification will not address personal (consumer) health records (PCHR) that are created and managed by patients on paper records, on personal computers, or on other media offline.
2. Referenced Documents
AHIMA E-health Tenets
American Medical Association Guidelines for Medical and Health Information Sites on the Internet
Federal Trade Commission FTC
Health on the Net (HON)
Hi Ethics Alliance
Internet Healthcare Coalition
MedCertain
URAC (also known as the American Accreditation HealthCare/Commission)
Index Terms
custodian; health; consumer; records; computers; ICS Number Code 35.240.80 (IT applications in health care technology)
DOI: 10.1520/E2211-02
ASTM International is a member of CrossRef.
Citing ASTM Standards
[Back to Top]
