US 12,364,567 B2
Healthcare monitoring method and system for secure communication of patient data
Nina Sellberg, Stockholm (SE); Casper Winsnes, Saltsjö-Boo (SE); Fredrik Henriques, Stockholm (SE); and Björn Strihagen, Täby (SE)
Assigned to ADDI MEDICAL AB, Danderyd (SE)
Filed by ADDI MEDICAL AB, Danderyd (SE)
Filed on Nov. 23, 2021, as Appl. No. 17/533,645.
Application 17/533,645 is a continuation in part of application No. 16/330,500, filed on Mar. 5, 2019, granted, now 11,188,676.
Prior Publication US 2022/0117692 A1, Apr. 21, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. A61B 90/25 (2016.01); A61B 90/50 (2016.01); B25J 15/00 (2006.01); B25J 19/00 (2006.01)
CPC A61B 90/25 (2016.02) [A61B 90/50 (2016.02); B25J 15/0019 (2013.01); B25J 19/0016 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A method in a healthcare monitoring system for anonymous communication of patient data associated with at least one patient from a host server, using a host application implemented in the host server, to an electronic user device, using a client application implemented in the electronic user device, via a wireless network, the method comprising:
pairing the client application and the host application, wherein the pairing comprises:
i) generating, using the host application, a unique access key for a client user using the client application, wherein the unique access key comprises a first part and a second part, wherein the first part of the unique access key is the original key and the second part of the unique access key is a hash or thumbprint of the original key, and wherein the unique access key, or any of its parts, cannot by themselves be linked to the client user;
ii) storing the second part of the unique access key in a memory accessible by the host application, wherein the second part is stored in association with information identifying the client user;
iii) sending the first part of the unique access key from the host application to the client application;
iv) storing the first part of the unique access key in a memory accessible by the client application;
sending, from the client application to the host application, a request to retrieve patient data from the host server, the request comprising a specification of the patient data to be retrieved and the first part of the access key;
in response to receiving the request in the host application identifying, using the host application, the client user associated with the unique access key, by:
i) generating a second part of the access key, based on the received first part of the access key;
ii) comparing the generated second part of the access key to one or more second parts of access keys stored in the memory accessible to the host application to find a matching second part, wherein the stored one or more second parts of access keys have been generated during pairing of the host application with one or more client applications; and
iii) if a matching second part of an access key is found, identifying the client user as the client user associated with the matching second part stored in the memory;
checking, using the host application, if the identified client user is authorized to retrieve the requested patient data; and
if the identified client user is authorized to retrieve the requested patient data, sending the requested patient data from the host application to the client application, wherein the patient data does not comprise any information identifying the at least one patient associated with the patient data.