rod200091 wrote on Saturday, September 06, 2014:
Hi,
I would like to know if there is a way to restrict the possibility to view and edit the records of a patient, to only one or a group of practitioners. This is very helpful to maintain the records privacy.
Thanks
fsgl wrote on Saturday, September 06, 2014:
Administration/ACL, set Sensitivities to High.
For individual encounters, set Sensitivity to High.
sunsetsystems wrote on Saturday, September 06, 2014:
It’s another Rod. 
Or if it’s a case of separate practices each with their own patient records, you really want separate databases (sites).
rod200091 wrote on Sunday, September 07, 2014:
Thanks fsgl,
I still do not quite understand the ACL.
Can you give more details on this?
regards
fsgl wrote on Sunday, September 07, 2014:
See this post about ACL.
I presume you wish to grant High Sensitivity to the ARO, Physicians. See attachments. If all patient notes are designated as High Sensitivity, this will work.
However, if some notes are Normal as well; in order for Physicians to view those notes, Normal Sensitivity may need to be in the Active Column; thus the default would be fine. Just check that no group aside from Physicians or Administrators have the High Sensitivity setting.
rod200091 wrote on Monday, September 08, 2014:
Thanks fsgl,
The setup explanation was very good and it worked as you mentioned.
However, it doesn’t produce the needed functionality. What I need for the practice is to limit the medical records to MD - patient. For example, Physician1 sees Patient1 and Patient2, Physician2 sees Patient3. So Physician2 cannot see Patient1 and Patient2’s records, and Physician1 cannot see Patient3’s records.
I think the advice given by Rod Roark will work, but that means that the administrative staff will have to handle several agendas, and the schedule cannot be integrated.
Is there another solution?
regards,
Rod
rod200091 wrote on Monday, September 08, 2014:
Thanks Rod
Your proposal will work, but since it is one office, that means one site for each physician and several not integrated agendas to manage by the administrative staff. Anyway, we will try this.
Regards,
Rod
fsgl wrote on Monday, September 08, 2014:
The fine granular control that you need is not possible without changes to the code. There is no easy way for DIY-ers to achieve this.
If another developer does not post the code customization over the next few days, I would then suggest that you click on Rod’s name, which will take you to his webpage where you can contact him to discuss his fees for the service. You will be in good hands with Rod. Who knows, there might be a discount for sharing the same name.