PKB has developed a specialized Clinical Data Repository (CDR) centered around the patient, housing relevant clinical data.
Information is kept confidential so that only the patient, and the people the patient chooses, are able to access the patient’s medical records. PKB encrypts data so that it is unable to access the data
Certain non-clinical information is stored unencrypted to identify the record into which new clinical data must be stored with the correct patient’s public key, including the patient’s:
- Date of birth
- Identifiers (national, organisation and team)
Clinical data is encrypted using DESede (Triple DES), a unique public and private key for each patient. Only the patient, and the people the patient chooses, have a copy of the private key. The secret key is stored with each document after being encrypted using the 1024-bit RSA public key that is unique to that patient account. Only the private key allows accessing the patient’s data. Therefore, no other parties are able to access the patient’s data.
More information on the PKB data model can be found here http://dev.patientsknowbest.com/home/data-model.