Hi everyone,
We use Healthcare & Life Sciences (HCLS) and are looking for best practices around controlling patient data visibility based on Healthcare Locations.
Our goal is for staff to only see patient records linked to their assigned Healthcare Location. Right now, our thought is to use Healthcare Locations to tag patient records and users, then leverage User Criteria to dynamically control access at the table or record level. We are trying to avoid heavy ACL use.
For those who have implemented HCLS/or know the product, does this align with best practice? Are there any compliance or performance considerations we should be aware of before continuing down this route?
Thanks in advance for your insights!
— Vanessa Cameron, Peke Waihanga - Artificial Limb & Orthotic Service
