User Permissions
Overview
HealthInfoNet’s reporting dashboards are configured with role-based permissions so that each user only obtains access to the information relevant to the organization(s) and patient(s) they serve. Role-based permissions leverage HealthInfoNet’s organization roster to inform access based on defined hierarchical relationships.
Organization Association
When a user is established in HARP, their organization’s designated Account Authorizer will determine the specific organization(s) to which they require access for reporting purposes by using HealthInfoNet’s organization roster (per the User Organization reporting dashboard) to identify possible options. This determination is known as the user’s “Associated Organization.”
Note: A user is not able to be associated with a specific provider (e.g., MD, DO, NP, PA, etc.).
From an organizational management perspective, an Associated Organization is no different from an Attribution Entity in that the selected organization shares the same unique organization identifier and is categorized within the same hierarchical system. A user that is assigned to an Associated Organization therefore receives access to all patient attribution information assigned both directly to that organization and to each of its child entities. For more information, visit the Patient Attribution methodology section.
Role-Based Permissions Example
Organization Level | Associated Organization | Role-Based Permissions Description |
|---|---|---|
Site | Northern Light Mercy Hospital - Fore River - Family Practice | User receives access to patient attribution information for reporting purposes for only this Site. |
Facility | Northern Light Mercy Hospital | User receives access to patient attribution information for reporting purposes for this Facility and each of its Site children. |
Group | Northern Light Health | User receives access to patient attribution information for reporting purposes for this Group and each of its Facility and Site children. |
Program | Beacon ACO | User receives access to patient attribution information for reporting purposes for this Program and each of its Group, Facility, and Site children. |
User Organization
For users unsure of which organizations they have been associated with for reporting purposes, they can visit the User Organization reporting dashboard to view their hierarchical role-based permissions.
Because users cannot be associated with specific providers, the Provider entity does not exist in the User Organization reporting dashboard. However, if a user’s organization has included providers in their custom attribution files, and those providers are associated with an organization to which the user does have access, the user will also be able to obtain reporting for those providers within all reporting dashboards.