Difference between revisions of "MHWG Consumer Mobile Health Application Functional Framework,"
| Line 65: | Line 65: | ||
== Minutes== | == Minutes== | ||
===2017 Meetings=== | ===2017 Meetings=== | ||
| − | *[[cMHAFF call, Tuesday June | + | *[[cMHAFF call, Tuesday June 13]] |
*[[cMHAFF call, Tuesday June 6]] | *[[cMHAFF call, Tuesday June 6]] | ||
*[[cMHAFF call, Monday, May 22]] | *[[cMHAFF call, Monday, May 22]] | ||
Revision as of 21:00, 13 June 2017
Project Co-Leads: Nathan Botts and David Tao
Contents
Overview
This project (Consumer Mobile Health Application Functional Framework, (a.k.a. cMHAFF) will define security, privacy and data standards and guidelines for mobile health applications (apps), as well as other aspects of transparency and consumer protection through the life cycle of such apps (from purchase, download, installation, use, and deletion). The intent is to provide industry guidance and common methods to enable the development of mobile health apps targeted to consumers/citizens that use protected health information (PHI) and personally identifiable information (PII). These standards will not address the clinical content of such apps (e.g., "Does it give good advice?"), but will provide a framework for security, privacy and the integration of data generated from apps into Personal Health Record (PHR) and Electronic Health Record (EHR) systems as well as into other types of data repositories (e.g., personal data stores, population care systems). "Mobile Health Apps" include apps running typically on smartphones, but also on other consumer devices such as watches and tablets.
cMHAFF may reuse conformance criteria already available within the HL7 PHR-S and EHR-S Functional Models, augmenting with new conformance criteria specific to mobile platforms (e.g., use of geolocation services, accelerometers, cameras, microphones, contacts). It will also use existing HL7 principles for security and privacy risk assessment. It will not attempt to replicate standards, regulations, and guidelines defined elsewhere, but will reference them where possible.
In particular, cMHAFF will address the following areas:
- User, device, and cross-system authentication
- Authorization to content and features
- Proxy designations
- Use of location services, camera, accelerometers and other smartphone services
- Security of data at rest (local and cloud)
- Security of data in transit (wired and wireless)
- Minimum data standards for device generated and device transmitted information
- Record system reliability; record authenticity (it is what it represents to be)
- Data provenance
- Audit
- Discontinuation of use of an app
- Conditions and agreements, e.g., privacy policy, terms of use, and in-app disclaimers
The cMHAFF project went through an HL7 Comment-Only Ballot in January 2016; comments were reconciled as of September 2016; a revised cMHAFF document is being developed for balloting in 2017.
Project Scope Statement
File:PSS Consumer Mobile Health App Framework 20150217.pdf
Meeting Schedule
Standing meetings are every Monday at 5 PM Eastern. Watch for weekly announcement and agenda. Monday meetings will usually be cancelled if cMHAFF meets jointly with Security and CBCC (Tuesday, 2-3pm ET) in any given week.
WebEx: https://westat.webex.com/westat/j.php?MTID=mf163da12b3585dd6f6ffa0e66adfb4bf
Phone: +1 770-657-9270 Participant Passcode: 465623
Documents
2017 Working Documents
File:HL7 cMHAFF Informative Ballot Draft.docx Copy of cMHAFF as updated after ballot reconciliation, in progress toward next ballot. Updated June 3, 2017
File:MHAFF CONS MHAFF R1 O1 2016JAN Consolidated WG TRACK FOR 2017 BALLOT.xlsx -- Ballot Reconciliation spreadsheet, edited to show work in progress toward next ballot
Reference Resources
File:Draft White Paper PGHD Policy Framework HL7 MH Comments.pdf Draft whitepaper on PGHD, written by Accenture for ONC.
File:French good practice guidelines on mHealth apps.pdf French mobile app guidelines, to compare to cMHAFF.
File:EU Privacy CodeofConductfinaldraft.pdf EU voluntary but authoritative guidelines, to compare to cMHAFF. See Privacy Code of Conduct on mobile health apps for an overview.
Commission Staff Working Document on the existing EU legal framework applicable to lifestyle and wellbeing apps This is a non-exhaustive description of EU legislation, applicable to lifestyle and wellbeing apps. The aim of this document is to provide guidance for example to app developers.
Old documents
The following are old, but are included for historical purposes
File:MHAFF CONS MHAFF R1 O1 2016JAN.pdf -- Original cMHAFF as balloted in January 2016
File:HL7 MH Out of Cycle intro v20150427.pptx
File:HL7 Consumer Mobile Framework Overview v20150406.pptx
Minutes
2017 Meetings
- cMHAFF call, Tuesday June 13
- cMHAFF call, Tuesday June 6
- cMHAFF call, Monday, May 22
- cMHAFF calls Monday, April 24, May 1 and 8 -- CANCELLED (travel, Madrid). May 15 cancelled (lack of attendance and technical problems)
- cMHAFF call, Monday, April 17
- cMHAFF call, Monday, April 10
- cMHAFF call, Monday, March 27
- cMHAFF call, Monday, March 13
- cMHAFF call, Monday, March 6
- cMHAFF call, Monday, February 20
- cMHAFF call, Monday, February 6
- cMHAFF joint with Security/CBCC, Tuesday, January 31
- Joint with Security/CBCC at San Antonio WGM, January 17, 2017
2016 and Earlier Meetings
Most meetings in 2016 were dedicated to ballot reconciliation, and the results were reflected in the Ballot Reconciliation Spreadsheet (see link under 2017 Workng Documents above).
File:HL7 Consumer Mobile App Framework Minutes v20150818.docx
File:HL7 Consumer Mobile App Framework Minutes v20150810.docx
File:HL7 Consumer Mobile App Framework Minutes v20150615.docx
File:HL7 Consumer Mobile App Framework Minutes v20150601.docx
File:HL7 Consumer Mobile App Framework Minutes v201500518.docx
File:HL7 Consumer Mobile App Framework Minutes v201500504.docx
File:HL7 Consumer Mobile App Framework Minutes v20150427 28.docx
File:HL7 Consumer Mobile App Framework Minutes v20140413.docx
File:HL7 Consumer Mobile App Framework Minutes v20140406.docx
