E-infrastructure basic services
The foundation for setting up an electronic patient record
Media image full width
E-infrastructure basic services
The foundation for the electronic patient record
All components of the following basic services (ACS, REG, REP, MPI and HPD) jointly form the EPR system. The E-portal for patients and the E-portal for healthcare professionals are available for the respective users.
These web portals enable EPR users to access all the functionalities required by the legislator, such as uploading and viewing medical documents/images, as well as managing permissions.
E-portal for healthcare professionals
Access for professionals to all functions
The web-based E-portal for healthcare professionals from Post E-Health allows medical personnel and specialists to share patient-related treatment information efficiently, conveniently and regardless of the primary systems in use. Via an intuitive user interface, healthcare professionals have access to relevant treatment data, images and documents.
Access is centrally managed and recorded, or prevented if the corresponding permission is lacking. The E-portal also provides access to the Post E-Health platform’s E-collaboration services. The E-report transfer, E-image data management, E-referral/E-transfer and E-communication services enable collaboration to be further optimized.
- Simpler and efficient exchanging of data between all service providers across the treatment process
- Strengthening of relationships and collaboration
- Enhanced transparency in documentation, communication and approval of data
- Stronger data protection thanks to central administration of permissions
- Access to E-collaboration services regardless of primary systems
E-portal for patients
Access for patients to all health data
The web-based E-portal for patients provides patients with highly secure access to relevant treatment information in their electronic patient records irrespective of time or location. The E-portal also supports individual documentation of personal health data, e.g. fitness-related journals. Ongoing notification facilitates active participation by patients in their treatment process.
It is the patients who decide which healthcare professionals are allowed access to their data, and to what extent. The range can be expanded with additional services, e.g. E-vaccination record, E-EPR self-registration, E-inpatient registration, Mobile applications for patients and others.
- Better quality of treatment, enhanced patient safety and faster inclusion of additional healthcare professionals.
- Maximum transparency thanks to centralized and user-friendly viewing of personal medical documents
- Access by healthcare professionals can be controlled according to confidentiality levels
- Vital information can also be accessed in an emergency
- High level of data security thanks to certified infrastructure in accordance with ISO 27001 and web security in accordance with OWASP
Access Control System (ACS)
The Post E-Health platform features an extensive access control and permissions system. The ACS checks user permissions upon each query/each access to a document or other patient-specific data, and issues or refuses authorization accordingly. This automatic verification takes place on the basis of defined rules. As such, ACS ensures that only authorized persons gain access to the content and that the data is protected in compliance with applicable law.
As a permissions system, the ACS is linked to the IAM access control system (Identity and Access Management system). Both are E-infrastructure basic services and are fundamental to the Post E-Health platform’s other services.
- High security thanks to unique access control
- High level of flexibility when administering access permissions
Audit Record Repository (ARR)
Center for transparency and system maintenance
The ARR logs all transactions performed within a (core) community on the Post E-Health platform – both permitted and rejected transactions. Activities such as document publication, patient search, registrations on an e-portal, or access to information generate technically detailed log entries on the user-friendly web interface.
These can be analysed, for example, to ascertain which users have retrieved, registered or modified specific documents on individual patients. The ARR is essential for building confidence in the protection and correctness of patient data. The benefits of the ARR can also be expanded to customer-specific IT systems.
- Increased transparency and security thanks to seamless logging and auditability of all activities
- Legally compliant gathering, storing and preparation of the requested logs
- Optimized performance and enhanced management thanks to simple analysis of transaction duration
Cross Community Gateway (CCG)
Data exchange between (core) communities
The Post E-Health platform’s CCG complies with the legal regulations on execution of the Federal Act on the Electronic Patient Record (EPRO), safeguarding the exchange of data and information between the (core) communities. This technical interoperability allows patient- and EPR-specific data such as reports, X-ray images etc. to be located in another (core) community.
The search results are then displayed in the E-portal for healthcare professionals or the service provider’s information system (depending on depth of integration). The CCG also offers extra support in the form of functionalities for translating terminologies in addition to the official defined semantic standards.
- Enhanced security thanks to a seamless transfer of information across community borders
- Legally compliant exchange of information based on international standards
- Improved quality of treatment thanks to extended knowledge transfer
- Enhanced technical and semantic interoperability
Healthcare Provider Directory (HPD)
Service for finding and selecting healthcare professionals
The HPD integrated into the Post E-Health platform serves to record and manage healthcare professionals and their auxiliary staff, as well as health institutions within a (core) community. This enables patients to reliably decide to whom they wish to grant access rights to their electronic patient record (EPR). This is of crucial significance to the protection of patient data in the EPR.
As a directory service, HPD is one of the Post E-Health platform’s E-infrastructure basic services. The HPD also serves as a business partner master data record, which supports targeted communication and Post E-Health’s E-collaboration services thanks to additional captured data.
- Central administration of all participants in a (core) community for the accurate and individual dispatch of information and assigning of access rights in the EPRO context.
- Unique identification of participants to protect data in the EPR
- Automated registration, updating and deletion thanks to interfaces to other directories of the participating organizations
- Automated updating of master data in the systems of the participating health organization
Identity and Access Management (IAM)
User administration for system access
The Post E-Health platform features an extensive access control and permissions system. All platform users eligible for access are registered and managed in the IAM. This means that the IAM controls who can access information, when and in which context. Each patient can decide which individual healthcare professionals or groups should have access to the electronic patient record.
As an access control system, the IAM is linked to the ACS permissions system (Access Control System). Both are E-infrastructure basic services and are fundamental to the other services of the Post E-Health platform.
- Protection of sensitive patient data: only authorized persons gain access
- High level of security using state-of-the-art technology and full EPRO compliance
- Configurable, customer-specific roles
- Seamless access to services and increased efficiency when integrating the services into primary systems
Master Patient Index (MPI)
Management of patient identities
It is vital that the data and documents can always be assigned to the right patient during the process of cross-institution networking. The Master Patient Index ensures this requirement is met by managing various patient identities for the IT systems of the healthcare institutions.
The MPI service provides user interfaces and process support for the clearing of patient identities and master data (patient clearing). Unique patient identification is an E-infrastructure basic service and a basic requirement for the services of the Post E-Health platform.
- Greater security thanks to unique patient identification at national level
- Optimization of master data quality within the (core) community
- Enhanced transparency in the clearing process
- Increased efficiency thanks to automation
Document Registry (REG)
Directory of all documents and images
All available documents will be provided to patients and authorized healthcare professionals via the electronic patient record (EPR). The REG is responsible for managing all metadata and references essential to cross-institutional exchange of data on the Post E-Health platform.
This means both patients and healthcare professionals can filter their search queries or manage access permissions (e.g. for a specific type of document). The “Cross Community Gateway” service even allows an IHE-compliant document register from another (core) community to be retrieved.
- Reliable and efficient retrieval of documents and information
- Clarity thanks to traceable document changes and versions
Document Repository (REP)
Document and image storage
The REP within the Post E-Health platform ensures that relevant medical documents from the electronic patient record are available to authorized healthcare specialists along the entire treatment path. These secure document repositories must be available to every (core) community to ensure secure and permanent access to current documents and images.
The document repository is also indispensable to the cross-institutional exchange of data and is among the Post E-Health platform’s E-Infrastructure basic services.
- Efficient and secure management of large data volumes
- Documents are available as required to persons with the corresponding access rights
Standard connection to the platform
The service provides two adapters to ensure that data is exchanged between the Post E-Health platform and the primary systems via clearly defined interfaces. The source adapter takes the information from the primary systems and transfers it into the corresponding Post E-Health platform’s basic services following security verification.
The consumer adapter is used to transmit information from the E-Health platform into the primary systems or the PAS, KIS etc. The service also enables implementation of customer- and/or project-specific links.
- Flexible connection of proprietary systems to the Post E-Health platform
- Implementation of customer-specific and project-related links
- Interfaces based on international standards
Support around the clock
Swiss Post offers 1st level technical support for all E-Infrastructure basic services, which is available around the clock provided a corresponding service level agreement is in place.
The experienced helpdesk staff provide competent advice and information if technical issues are encountered and ensure that 2nd level support promptly finds solutions in the case of more complex issues. The (core) communities are assisted by Swiss Post, one of Switzerland’s largest support organizations.
- Large support organization with locations throughout Switzerland
- Professional helpdesk staff for 1st level support
Contact Post E-Health
We would be happy to help.
Write to us
Send us your query directly online.
News and information on LinkedIn
Post CH Ltd
Digital Health business unit