We need to remove the patient data from the openemr but keep all the customization. Does any one know how this can be performed safely without leaving any sensitive information behind? There are lots of tables that has patient information. Would simply truncating all those tables be a solution? Thanks!
Are these code customization, or customization in the database?
BTW removing patient data completely is generally the antithesis of HIPAA compliant, so I don’t know your use case but you will definitely want to consult with your legal or HIPAA compliance officer over the impact of this and your data retention policy requirements if you actually have PHI data you need to retain.
You could attempt to truncate your patient tables (make sure to do so on a backup) but you will also need to clean out documents on drives, system logs, audit logs, etc… You can also try to look for any table with a pid column.
We currently do not have any mechanism of doing a GPDR or California’s CCPA right to be forgotten mechanism in OpenEMR. So you’d have to go table by table. Perhaps someone else in the community has built something, but searching the forum doesn’t bring up any solutions.
Thanks Stephen for your answer! These are custom PHP codes added to the OpenEMR.
I wish there was something simpler too, but for now I will go with your suggestion and truncate all tables with PID. Will also go over the logs, etc. and try to clean as much as possible.