US 12,230,375 B2
Methods and systems for analyzing accessing of medical data
Nicholas T. Culbertson, Baltimore, MD (US); and Robert K. Lord, Baltimore, MD (US)
Assigned to Protenus, Inc., Baltimore, MD (US)
Filed by Protenus, Inc., Baltimore, MD (US)
Filed on Jun. 29, 2023, as Appl. No. 18/344,430.
Application 18/344,430 is a continuation of application No. 17/815,666, filed on Jul. 28, 2022, granted, now 11,735,297.
Application 17/815,666 is a continuation of application No. 17/505,808, filed on Oct. 20, 2021, granted, now 11,437,128, issued on Sep. 6, 2022.
Application 17/505,808 is a continuation of application No. 16/857,716, filed on Apr. 24, 2020, granted, now 11,183,281, issued on Nov. 23, 2021.
Application 16/857,716 is a continuation of application No. 15/078,736, filed on Mar. 23, 2016, granted, now 10,679,737, issued on Jun. 9, 2020.
Claims priority of provisional application 62/139,494, filed on Mar. 27, 2015.
Prior Publication US 2023/0343423 A1, Oct. 26, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. G06Q 10/10 (2023.01); G06Q 10/105 (2023.01); G16H 10/60 (2018.01); H04L 9/40 (2022.01)
CPC G16H 10/60 (2018.01) [G06Q 10/105 (2013.01); H04L 63/10 (2013.01); H04L 63/1433 (2013.01); H04L 63/20 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method for detecting a non-compliant access of electronic patient data, the computer-implemented method comprising:
receiving, by one or more processors of a patient privacy monitoring server, access data from a plurality of electronic patient data access devices situated at various locations, the access data comprising a plurality of electronic patient data access events by one or more employees;
determining, by the one or more processors and based on the access data, that at least one electronic patient data access event of the plurality of electronic patient data access events constitutes a possible non-compliant access of electronic patient data, the determining including:
detecting, by a data patterning component and based on the access data, at least one data pattern of electronic patient data access events by a clinical care group; and
determining, by the data patterning component, the at least one electronic patient data access event by a subset of the clinical care group that is inconsistent to the at least one data pattern of electronic patient data access events;
in response to the determining that at least one electronic patient data access event of the plurality of access events constitutes a possible non-compliant access of electronic patient data, causing to present on a display of a user interface, by the one or more processors, an alert indicating the at least one electronic patient data access event, and a feedback indicator configured to allow a user to provide feedback indicating whether the at least one electronic patient data access event associated with the alert presented on the display of the user interface is a valid non-compliant access of electronic patient data or a false positive non-compliant access of electronic patient data;
receiving, by the one or more processors, feedback via the feedback indicator, the feedback indicating whether the at least one electronic patient data access event is a valid non-compliant access of electronic patient data or a false positive non-compliant access of electronic patient data; and
in response to receiving the feedback, modifying or maintaining, by the one or more processors, at least one of the plurality of rules for detecting possible subsequent non-compliant access of electronic patient data.