Consent Engine

PKB has developed an intuitive and powerful consent engine which puts the patient in control of sharing their health data. This consent engine follows the basic PKB consent model:

Consent is managed in one of three ways:

• Explicit Consent: With the patient in the care setting.
• Implied Consent: Patient has been referred to the team.
• Break The Glass: Where a professional must access information about a patient where they have not been given explicit consent (the patient may be unconscious, have not logged into PKB to grant consent, etc.). This feature allows the professional to gain access to the patients record for a session while auditing the reason for doing so.

Consent is recorded by the patient in one of the three ways:

• Log into their account and taking over the sharing settings, consenting to increase access, or revoking their consent for data sharing.
• Consent offline through a paper consent form, witnessed by a professional for a carer to be allowed to register and log into the account. The carer, on behalf of the patient, can increase/decrease sharing.
• Ask a professional to increase/decrease the sharing settings. The professional logs that they did so on behalf of the patient.

In addition to consent, health data is further categorized by four privacy labels:

• General health: this covers most of the health record and includes information that most health professionals will use to deliver care
• Sexual health: includes reproductive health and HIV
• Mental health: for example diagnoses of anxiety, depression or schizophrenia
• Social care: information about the care from local authority social care team, including disability funding. This is very useful in helping to manage home care services

Each data point has one privacy label, which the patient may change at any time. Only teams that the patient has chosen to share data associated with the same privacy labels will be able to view these data points.