JPH04120651A - Medical information processing system - Google Patents

Abstract

PURPOSE:To protect the privacy of patients by providing a function which classifies patient information according to privacy and requires the consent of patients for referring to, opening, and transferring the information having higher classes of privacy. CONSTITUTION:When a patient comes to a hospital for the first time, a consultation card is prepared at by means of an MWS for new patients. On this consultation card, fingerprint information is also stored in addition to ordinary patient information. The past history of the patient obtained through consultation is registered on the card. When the past history is registered, the past history is classified to Class 2 privacy. The other information is also registered after the information is classified according to privacy. When the information of the patient is referred to at the MWS, the operator first makes operator's own registration card read by the MWS 3. On the registration card, such identifying information as password, fingerprint, etc., and the privacy handling class of the card holder are registered in advance. Then the operator inputs operator's password, fingerprint, etc., as operator's own identification information for identification.

Description

DETAILED DESCRIPTION OF THE INVENTION [Object of the Invention] (Industrial Application Field) The present invention relates to a medical information system, for example, a medical workstation, and particularly relates to a medical information system in which patient privacy protection is taken into consideration.

(Prior art) Recently, medical information systems (HIS: Ho5) in hospitals have been developed.
pital Information System
m), PAC3: Picture Archive
e and Communicat+onSystem
With the development of , teleradiography, etc., it has become relatively easy to obtain a large amount of information about patients, such as name, age, height, weight, gender, medical history, and diagnostic results. Therefore, as the above-described systems have been adopted by various medical institutions both domestically and internationally, the information regarding patients has come to be distributed over a wide range of areas.

On the other hand, when it comes to operators trying to obtain such patient information, they only authenticate the person using their ID number, so the patient information is It tends to be increasingly abused. Therefore, from the viewpoint of privacy protection, protecting the confidentiality of patient information is becoming increasingly important.

As mentioned above, in conventional medical information systems,
There are usually no functions added to protect specific information yet. However, various information protection measures have already been taken in other fields. That is, it is mainly concerned with personal authentication, and includes the following methods and techniques.

1) PIN number 2) Card for each individual 3) Combination of 1) and 2) 4) Fingerprint recognition (problem to be solved by the invention) According to the above-mentioned prior art, in both cases, personal identification is performed by the operator. Information is freely obtained, while patient information is not provided without permission to people other than the operator who cannot perform personal authentication.

However, in the case of medical workstations or medical terminals, the medical information is collected only with the patient's consent because the device is never operated by the patient and in most cases is operated only by medical personnel. There is a problem that it leaks without any information.

The present invention makes it possible to protect patient privacy by setting a confidentiality level for patient information and adding a function that requires patient consent in order to refer to, disclose, or transfer highly confidential information. The aim is to provide a medical information system that provides a comprehensive medical information system.

[Structure of the Invention] (Means for Solving the Problems) This invention has been made in order to solve the above problems.In a medical information processing system capable of recording and retrieving patient information, medical information about patients is It has a function to add a confidentiality level to the information and store it as additional information, and when operating the medical information processing system, consent data for the disclosure of the patient's medical information is required according to the confidentiality level, and predetermined patient information Provides a medical information processing system that outputs.

The present invention also provides a medical information processing system characterized in that the patient's authentication is performed by comparing a fingerprint, which is incidental information of the retrieved medical information, with the patient's fingerprint.

Furthermore, the present invention provides a medical information processing system characterized by distinguishing medical examinees by fingerprint verification.

(Operation) When inputting a patient's medical information into the medical information system, an ID number, fingerprint information, etc. for identifying the patient, that is, patient consent data, information for identifying the operator, etc. are set as supplementary information. This additional information becomes a necessary input for proceeding with the logical operation of the present invention, and is used to determine whether to permit or disallow disclosure of the patient's medical information to be output. That is, a confidentiality level is assigned to the patient's medical information, and the patient's medical information that can be output is controlled depending on the operator.

Therefore, according to the present invention, patient information cannot be released by the operator without permission, making it possible to protect patient privacy under sufficient information management. In addition, by effectively utilizing at least a portion of such means, it is possible to reduce unforeseen situations in which medical examinees are mistaken.

(Example) The configuration of one embodiment of the present invention will be described with reference to FIG.

This medical information processing system consists of a computer 1 that controls the entire system.
, a storage device 2 that stores various data, a medical workstation MWS3 that is a source of medical information, and a fingerprint authentication device 4 that performs fingerprint verification.

Although only one MWS 3 is shown in this figure, a plurality of MWS 3 actually exist.

Next, the operation of the above configuration will be explained.

First, when a patient visits the hospital for the first time, a visitor card is created at the MWS for first-time consultation reception. This patient card stores general patient information as well as fingerprint information. This is shown in FIG.

This information is also stored simultaneously in the storage device of the system shown in FIG. An example of this is shown in FIG.

Next, information input when making a diagnosis will be explained. For example, as shown in the example of FIG. 2, past medical history is registered through an interview. Since an individual's medical history belongs to privacy, it is undesirable for this information to be lost. Therefore, it is registered as secret level 2. Other information is similarly registered with a secrecy level assigned.

The confidentiality level of each piece of information may be determined in advance according to the type of information, or the patient may be allowed to select the level depending on the information.

The secret level is not limited to 2 levels, but may be 3 levels or higher.

For example, a restriction may be set such that a secret level of 3 cannot be referred to by anyone other than the attending physician.

Next, the handling of information will be explained. When referring to information on the MWS, the operator must first enter his or her registration card on the MWS.
Have S3 read it. This registration card is pre-registered with identification information such as a PIN number or fingerprint, as well as the level of confidentiality. Next, the operator enters identification information such as a personal identification number or fingerprint to confirm the identity of the user.

An operator requests the system to refer to information about a certain patient.

At this time, if the handling class of the operator is 1, only information with a confidentiality class of 1 is displayed on the MWS 3. However, the contents of information with a secrecy level of 2 or higher are not displayed, or the fact that the information exists is displayed.

If the operator's handling class is 2, the secrecy class 1 and 2
information will be displayed on MWS3. The same applies to cases where the grade is 3 or more.

Next, information processing in the case of transferring operator or patient information to an external storage device, etc. outside the hospital will be explained.

An operator requests the system to transfer information for a certain patient.

At this time, if the operator's handling class is 1, transfer is not possible. If the operator is in a handling class or 2, the system requests reading of the patient's fingerprint. If this fingerprint matches the registered patient's fingerprint, it will be determined that the patient has consented and the transfer will be possible.

In the embodiment, the scope of secret protection is external transfer, but this scope is not limited to the embodiment.

The following is shown as a modified example.

Modified row 1: Patient identification The patient identification function according to the present invention can also be applied to the following cases.

1) Identity verification when taking diagnostic images, and identity verification of images.

a) Identity verification when taking a diagnostic image For example, when taking a diagnostic image using X-rays, the identity of the person is verified using a fingerprint. Furthermore, since recent X-ray images are digitized, fingerprint information may be included as additional information of the image.

b) Image identity verification: In the preceding paragraph, if the incidental information of the image includes fingerprint information,
During diagnosis, this fingerprint information and the patient's fingerprint can be used to confirm that the image belongs to the patient.

2) Identity verification at the time of surgery.

It can also be applied to identity verification when performing surgery, treatment, etc.

3) It can also be applied to identity verification when handing over medicines.

Modified Example 2: Identification of Infants In a maternity hospital, an incident may occur where an infant is confused and taken over by different parents. This is due to insufficient personal authentication of infants. This can be prevented by conducting blood tests, but it takes time and money. Personal authentication using fingerprints can be used for this purpose.

1) When an infant is born, the infant's fingerprints, parents' names, date of birth, etc. are registered.

2) At the time of discharge from the hospital, the infant's fingerprints are compared with the registered fingerprints and the parents' names are confirmed. In doing so, infants will also be identified using conventional means. If there are discrepancies or similar fingerprints, a blood test will be performed.

In this case, since the number of people in the hospital is only infants, fingerprint authentication is relatively easy and accuracy is not required.

[Effects of the Invention] According to the present invention, patient information cannot be released by an operator without permission, so it is possible to protect patient privacy under sufficient information management. In addition, by effectively utilizing at least some of these methods, it is possible to reduce unexpected situations in which medical examinees are mistaken.

[Brief explanation of drawings]

Figure 1 is a block diagram showing the configuration of an embodiment of the present invention, Figure 2 is a correlation diagram between patient information and confidentiality levels, Figure 3 is a diagram showing input items of a medical examination card, and Figure 4 is infant information. FIG. 2 is a diagram showing input items. 1... Computer 2... Storage device 3.
... Workstation 4 ... Fingerprint authentication device agent Patent attorney Nori Ken Yudo Kondo Takeshi

Claims (3)

[Claims] (1) A medical information processing system capable of recording and retrieving patient information has a function of adding a confidentiality level to medical information about a patient and storing it as incidental information, and when operating the medical information processing system, A medical information processing system that requires consent data for the disclosure of medical information from the patient according to the grade and outputs predetermined patient information. (2) The medical information processing system according to claim 1, wherein the patient's authentication is performed by comparing a fingerprint, which is incidental information of the retrieved medical information, with the patient's fingerprint. (3) The medical information processing system according to claim (1) or (2), characterized in that medical examinees are distinguished by fingerprint verification.