Skip to content
Busque para obtener información sobre los productos y soluciones de InterSystems, las oportunidades de carrera y más.

Advisory: Issue with Consent Processing in the Operational Data Store

September 1, 2020 – Advisory: Issue with Consent Processing in the Operational Data Store

InterSystems has corrected an issue that occurs with consent processing in the Operational Data Store (ODS).

This problem exists for Customers who use the Operational Data Store (ODS) in one of the following versions:

  • HealthShare Information Exchange 2018.1.x
  • HealthShare Unified Care Record 2019.1.x
  • HealthShare Unified Care Record 2019.2.x
  • HealthShare Unified Care Record 2020.1.x

When the Operational Data Store receives a request for a patient's data from an Access Gateway, it asynchronously fetches and processes the data. Consent is evaluated asynchronously for each SourceMRN, which is a combination of Facility, Assigning Authority, and MRN.

Previously, the consent evaluation for the first SourceMRN was applied to each of the subsequently evaluated SourceMRNs. This could cause consent to be applied incorrectly. This issue has been identified as a patient privacy concern as it could result in inappropriate access to patient data by an authorized HealthShare user. This issue does not cause an increased risk of disclosure outside of HealthShare.

InterSystems recommends that customers who use the ODS apply the fix for this defect. The fix ensures that the consent evaluation for each SourceMRN is processed independently.

The correction for this defect is identified as HSIEC-3224 and will be included in all future product releases. It is also available via Ad hoc change file (patch) or full kit distribution from the Worldwide Response Center (WRC).

If you have any questions regarding this advisory, please contact the WRC.

RELATED TOPICS

Latest Alerts & Advisories

Aug 15, 2024
InterSystems has corrected a defect that can cause database corruption or errors with multi-volume databases under extremely rare circumstances. Only databases that have been truncated are at risk.
Jul 24, 2024
There are four alerts in the HS2024-03 Alert Communication. A summary of each alert is shown below. Details for each alert are contained in the linked document.
Jun 24, 2024
Broadcom recently announced a problem that can cause data consistency errors in database applications. The Broadcom article is available here:
May 30, 2024
Beginning with the release of InterSystems IRIS® data platform 2022.3, InterSystems corrected the license enforcement mechanism to include REST and SOAP requests. Due to this change, environments with non-core-based licenses that use REST or SOAP may experience greater license utilization after upgrading. To determine if this advisory applies to your InterSystems license, follow the instructions in the FAQ linked below.
Apr 08, 2024
InterSystems has encountered a defect that causes some upgrades of HealthShare® Health Connect to fail. This only affects instances that are not licensed for the use of FHIR® and that have interoperability-enabled namespaces. Under these conditions, the upgrade fails with an error.
Mar 19, 2024
In evaluating an IBM Support notification, InterSystems has determined a potential impact for our customers. The notification in question is:
Feb 27, 2024
There is 1 alert in the HealthShare HS2024-limited Alert communication. An alert summary for the issue is shown is in the table below. Details for the alert are contained in the attached document: HS2024 Limited Communication.
Feb 01, 2024
There are 2 alerts in the HealthShare HS2024-02 Alert communication. An alert summary for each issue is shown is in the table below. Details for each alert are contained in the attached document: HS2024-02-Communication.
Jan 17, 2024
This problem affects the following products: