WO2004025535A1 - Medical data management system - Google Patents

Medical data management system Download PDF

Info

Publication number
WO2004025535A1
WO2004025535A1 PCT/JP2003/011648 JP0311648W WO2004025535A1 WO 2004025535 A1 WO2004025535 A1 WO 2004025535A1 JP 0311648 W JP0311648 W JP 0311648W WO 2004025535 A1 WO2004025535 A1 WO 2004025535A1
Authority
WO
WIPO (PCT)
Prior art keywords
medical data
patient
medical
members
access right
Prior art date
Application number
PCT/JP2003/011648
Other languages
French (fr)
Japanese (ja)
Inventor
Hirofumi Hirano
Fuminori Muranaga
Original Assignee
Hirano, Tamaki
Muranaga, Kaori
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hirano, Tamaki, Muranaga, Kaori filed Critical Hirano, Tamaki
Priority to AU2003262089A priority Critical patent/AU2003262089A1/en
Publication of WO2004025535A1 publication Critical patent/WO2004025535A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/10Office automation; Time management

Definitions

  • the present invention makes it possible for healthcare professionals, patients and researchers to share medical data efficiently and safely, and to utilize medical data collaboratively in the fields of healthcare, medical research and the medical economy.
  • the present invention relates to a medical data management system capable of selectively storing various medical data.
  • the electronic medical record system that has recently been introduced (hereinafter referred to as “related technology 1”) enables electronic storage and browsing of medical data, but is aimed at doctors with the aim of digitizing the existing paper medical record.
  • the aim was to share information, and medical data was stored, stored, and viewed mainly by doctors.
  • a method of sharing personal medical information as a database of medical records among multiple hospitals and a database terminal for personal medical information are disclosed in Japanese Patent Application Publication No. 2 0 0 1—2 9 7 1 5 No. 3 (hereinafter referred to as “related technology 3”).
  • the electronic medical record system is a system mainly for medical personnel, the preservation of medical data after the medical data storage obligation period has been determined arbitrarily by the medical institution. Nevertheless, there was a problem that the danger of losing medical data14 was high.
  • Related technology 3 proposes the second password as a means for sharing medical data between both doctors and patients.However, there is no means for managing access rights in units of medical data. If the second password is changed, the hospital will not be able to access all patient data, including the medical data used as the basis for diagnosis, and no one will be able to access medical data if the patient is unconscious. Realistic and rational operation was difficult, for example. Disclosure of the invention
  • the present invention provides a method in which a patient, a physician, a medical worker other than a physician (hereinafter, referred to as a “quasi-medical worker”), a researcher, a medical institution, or the like is electronically communicated through communication means such as the Internet.
  • Institutional maintenance of medical data is compatible, effective remote diagnosis is possible, important medical data can be sorted and stored for a period required by members including patients, and patients are the main subject.
  • One purpose is to build a medical data management system that enables the use of medical data in the medical research and medical economic fields.
  • the first invention of the present application is a method in which a patient, a doctor, a medical worker other than a doctor, and a medical institution are registered as members, and each member has an ID and a login
  • a medical data management system for logging in using authentication and certification means, registering and storing medical data for effective use, has a management file attached to each medical data, and records the access rights of members in a management file
  • an access right adding authentication means is provided.
  • the authorization means for adding rights is a medical data management system configured to exist for each patient member.
  • medical data generated by a doctor's consultation and the like is provided to the system by various members, such as a doctor member, a quasi-medical worker member, and a patient member. It is individually managed by the management file.
  • the members in the present invention are classified and registered as various members according to the relationship with the medical data, and the medical data management system assigns an ID for each member and, for example, a login password as a login authentication means. Each member will login to this system with the assigned ID and password for login.
  • the access right to the medical data is recorded in the medical data management file, and an access right adding authentication means is required to additionally record the access right in the management file. Therefore, a member whose access right is recorded in the management file is permitted to access the medical data, and the acquisition of a new access right to the medical data is based on the access right adding authentication means disclosed by the patient member. This is done by a medical member, etc., acquiring and obtaining access rights to the management file.
  • the authentication means for login and the authentication means for adding access right referred to here are the information stored and managed by individuals as passwords, information entered each time, information recorded on storage media such as magnetic cards and IC cards, and personal information.
  • information stored and managed by individuals as passwords
  • information entered each time information recorded on storage media such as magnetic cards and IC cards
  • personal information For example, fingerprints and retinal patterns created using personal biologic information, such as fingerprints and retinal patterns, may be misaligned.
  • doctors have been the subject of storing, storing, and viewing medical data
  • patients can also participate in storing, storing, and browsing medical data as members, and the right to access medical data can be granted.
  • Patient members have the right to allow addition, so the patient data is used by the subject of medical data.
  • the medical data is composed of, for example, irregular data and comments (including diagnostic comments, remote diagnostic comments, etc.) registered by each member.
  • the irregular data is, for example, a patient member's medical history, prescription, etc. , Findings, diagnoses, text data such as comments, numerical data such as clinical tests, electrocardiograms, radiographs, MR I, CT, and other image data, as well as videos and voices.
  • the data may be a combination of these data, or may be information expressed in extensible markup language (XML), etc.
  • secondary medical data obtained by performing processing such as changing the color tone and shading of the image Including.
  • the management file for managing medical data records information related to the management of medical data, and one or more medical data exist, for example, independent of medical data. , It can be integrated with medical data, exist as part of medical data, or exist as a database.
  • the information contained in the management file includes, for example, the storage location of medical data, the ID of the member who has access, the date and time the access was obtained, the member ID to which the access was added, and the circumstances that led to the addition of the access.
  • the recording of the access right of each member in the management file is realized, for example, by recording the member ID in the access right recording area of the data management file, and when an access request to the medical data is made by the member who has logged in Then, the medical data management system searches the management file of the medical data requested to be accessed, and permits the member whose ID is recorded in the access right recording area to access the medical data.
  • information such as member information, medical data, and medical data management file recorded in the medical data management system may be encoded and recorded.
  • a member whose access right has already been recorded in a management file of medical data has a function of additionally recording the access right of another member in the management file. It is characterized by making members accessible.
  • the access right of another member can be added to the medical data.
  • the patient member can capture the unauthorized access right holder by searching the access right recorded in the medical data management file, When unauthorized access is discovered, the access right of the member who is performing the unauthorized access may be deleted from the medical data management file with the system administrator's authority at the request of the patient member.
  • the third invention of the present application has a function of enabling a patient member to register his / her own medical data by himself / herself.
  • All medical data management files are configured to have the function of automatically recording the access rights of the patient members themselves, so that not only the patient members can always access their own medical data, but also the medical data Is configured to be able to be disclosed to others.
  • the fourth invention of the present application has the function of enrolling a researcher member and recording the medical data range approved by the patient member in a medical data management file, thereby obtaining medical data permitted to the researcher member. It is characterized by being configured to be able to open. For example, for a patient member who has logged in to the medical data management system, this system has the function of selecting medical data that the patient member may disclose, and the individual of the patient member accompanying the medical data such as gender and age. It has a function to select the range of information disclosure, and a function to record the results of the selection in a management file, and a function to extract intended medical data by condition search by researcher members. This is feasible, at which time the patient member may request a fee for research use of his or her medical data.
  • Medical data consists of data registered by patient members, multiple physician members, and quasi-healthcare professional members.Therefore, the availability of medical data reflects the registrant's willingness to release. May be equipped.
  • the storage manager of the medical data in each member whose access right is recorded in the management file, the storage manager of the medical data is determined in the order in which the medical data is required, and the storage manager abandons the role. In the event that the custody of the custody is transferred to the next candidate and ultimately all members abandon their custody, a function is provided to delete the medical data. Things.
  • the step of sorting the access right holders recorded in the medical data management file by membership type and determining the priority of the storage manager the first access right holder is determined as the storage manager and recorded in the management file Steps to notify the designated storage officer, Register the notified storage officer in the medical data management system whether to continue or abandon the storage officer, and the storage officer If abandoned as a custodian, the medical data management system has a function to repeat the step of determining the next custodian in accordance with the priority shown above, and a function to monitor whether a custodian exists. It is implemented by providing a function to delete the medical data when the storage manager is gone. As a result, medical data can be stored on the medical data management system, as long as not only the patient members but also one of the members with access rights recognizes the need, and the medical institution unilaterally discards the medical data. The decision situation can be avoided.
  • the sixth invention of the present application has a function of automatically searching for a person in charge of storage of medical data, totaling the amount of medical data stored for each member, and enabling charging for the total result. Is provided.
  • the system searches for the storage manager from all the medical data management files and retrieves the medical data recorded in the management file. It is possible to determine the billing fee by equipping a function to aggregate the data amount of data and calculate the total amount of medical data for each member. In this case, in addition to charging the member responsible for storage at the time of counting, charging for other members who have access to this medical data may be used together.
  • the seventh invention of the present application is intended to prevent a doctor member who has examined a patient member in the past from accessing the medical data of the patient member without restriction, so that the patient member can change the access right adding authentication means. It is characterized by being constituted. Patient members become patient members by logging into the medical data management system. Is recognized by this system. For example, when the access right addition password was used as the access right addition authentication means, the system requested the patient member to request the access right addition password and confirmed the used access right addition password. Later, the password can be changed to a new access right addition password.
  • the access right addition password can be freely changed by the patient himself, and after the access right addition password is changed, the old access right addition password can no longer add access rights. However, access to the medical data of members whose access rights have already been recorded in the management file is not affected.
  • the invention of the eighth application of the present application is intended for use in the case where another member adds an access right to the medical data specified by the patient member when the other member performs an access right to the medical data.
  • a warning setting function is provided to warn the patient member of the action and to record the action of the other member after the action of the other member and to notify the patient member of the action. Things.
  • the step of selecting medical data to be protected the step of recording that a warning has been set in the management file of the selected medical data
  • the step of A step of searching the medical data management file when the access right is added a step of issuing a warning to an actor who adds the access right if a warning is set in the medical data management file;
  • the actor who adds the access right determines the process. If the process is the execution of the addition of the access right, performs the process of adding the access right, records the actor in the management file, Members with additional access rights (eg, referral at remote diagnosis) and members who performed the action (eg, referral at remote diagnosis) Is notified to the patient member.
  • Members with additional access rights eg, referral at remote diagnosis
  • members who performed the action eg, referral at remote diagnosis
  • the ninth invention of the present application has a function of registering a disposable authentication means that allows another member to add an access right to the medical data only once for the patient's own medical data specified by the patient member. It is characterized in that it is configured to be able to request disposable authorization and input of certificate means to other members who perform additional acts of access right to medical data. For example, after the patient member logs in to the medical data management system, the step of selecting the target medical data, records that the request for the disposable authentication means was set when adding the access right to the management file of the selected medical data The step of searching for a management file of the medical data when the access right of another member is added.If the input request of the disposable authentication means is set in the management file, the disposable authentication is performed by the actor who added the access right.
  • Step is realized by the step of disabling subsequent disposable authentication means used.
  • a disposable authentication means for a patient member, obtain a request to create a disposable authentication means after logging in to the medical data management system with a patient member ⁇ mobile phone, computer terminal, or other device that can connect to the Internet. It is created by input, and the expiration date when not in use shall be arbitrarily determined by the patient member. ⁇
  • Means for passing the disposable authentication means created by the patient member to the user are, for example, verbal It can be communicated, displayed on the screen of a mobile phone, provided, printed, and used as a ticket.
  • the patient member In the event that the ticket with the disposable authentication means is lost, it is desirable for the patient member to have a function to disable the disposable authentication means by logging in to the system using a terminal or mobile phone.
  • the disposable authentication means referred to here is a password that is stored and managed by the individual as a password, information entered each time, information recorded on a storage medium such as a magnetic card or IC card, and personal information such as an individual's fingerprint or retinal pattern. Any of those created using biological information may be used.
  • the invention of the 10th application of the present application is based on the assumption that the member will be a client for remote diagnosis and medical treatment, and the doctor member who is the requestee will have the function of posting information related to remote diagnosis and medical treatment in specialized fields. Is provided.
  • a physician member who intends to be a remote diagnosis requester logs in to the medical data management system and provides his / her medical department, career, qualification, specialty, work area and remote diagnosis / medical care. It is possible to pre-register the conditions of the medical data management system in advance, and it is realized by providing a function that allows the requesting member to perform a condition search and browse the registered information.
  • information such as specialty fields can be searched and obtained from doctor members who have registered in the medical data management system and indicate that remote diagnosis is to be entrusted. It is more likely that a doctor who can provide high-quality remote diagnosis from a wide range can be selected, compared to the conventional remote diagnosis, which is often limited to doctors who are acquainted or registered with Ichi Itori.
  • the member becomes a requester of the remote diagnosis ''
  • the requesting member has the function of registering the evaluation of information such as the request, and the requestee who has received the evaluation can register the evaluation of the evaluation made by the client. It is characterized by having such a configuration. .
  • the requester registers the diagnosis result to the requester, step 1; Step 2 in which the evaluation of the diagnosis result is registered to the client and Step 3 in which the client sees the evaluation in Step 2 and registers the evaluation to the client.
  • step 2 a comment as a requester's text and a degree of satisfaction as a class value regarding the appropriateness of the diagnosis content, kindness of the explanation, etc. are registered, and similarly, in step 3, the evaluation of the evaluation of step 2 given in step 3 is received.
  • the comment as the text of the client and the degree of satisfaction as the class value are registered.
  • the registration of the satisfaction received as an evaluation from each other in steps 2 and 3 is, for example, a decision on whether the evaluated member understands the disclosure or not. If you understand through the steps to be performed, the history of satisfaction given to the other party will be released to other members by the function released on the medical data management system separately for the requester and the requestee of the remote diagnosis.
  • FIG. 1 is an explanatory diagram showing the configuration of the medical data management system of the present invention
  • Figure 2 shows an example of a membership information file.
  • FIG. 3 is an illustration of the medical data management file
  • Figure 4 is an illustration of membership registration
  • Figure 5 shows an example of a home page screen.
  • Figure 6 shows an example of the initial screen after the mouth
  • Figure 7 shows a screen example of the global menu for doctor members.
  • Figure 8 shows an example of a global menu for patient members.
  • Fig. 9 is an example of the global menu for associate healthcare professionals
  • Fig. 10 is an example of a screen for medical institution members
  • Fig. 11 is an example of a global menu for researchers
  • Fig. 12 is an example of a global menu for researchers. Screen example of patient search screen
  • Fig. 13 shows an example screen of the accessible medical data list screen.
  • Fig. 14 shows an example screen of the storage responsible medical data list screen.
  • Fig. 15 shows a screen example of the patient list screen
  • Fig. 16 shows a screen example of the medical data list screen for the patient to be examined.
  • Fig. 17 shows a screen example of the examination key input screen.
  • Fig. 18 shows an example of the medical data detail browsing screen (for doctors)
  • Fig. 19 shows an example of the medical data detail browsing screen (for patients)
  • Fig. 20 shows a screen example of the medical data access right holder list screen.
  • Figure 21 shows a screen example of a medical data access right addition restriction setting screen
  • Figure 22 shows a screen example of a remote diagnosis requestable doctor search screen screen
  • Figure 23 shows a screen example of a remote diagnosis requestable doctor list screen
  • Figure 24 Is a screen example of the remote diagnosis request doctor decision screen
  • Figure 25 shows a screen example of the reverse evaluation comment viewing screen.
  • Figure 26 shows a screen example of the remote diagnosis request list screen.
  • Figure 27 shows a screen example of the remote diagnosis evaluation input screen.
  • Figure 28 shows an example of a medical data search screen.
  • Figure 29 is an illustration of one-time password creation
  • Figure 30 is an explanatory diagram of the access right addition restriction process at the time of consultation
  • Figure 31 is an explanatory diagram of the access right addition restriction process at the time of remote diagnosis
  • Figure 32 is an explanatory diagram of the concept of the medical data storage responsible member determination process
  • Fig. 3 3 is an explanatory diagram of the determination process of the custody responsible member candidate
  • FIG. 34 is an explanatory diagram of the process of determining the member responsible for storage of medical data and deleting the medical data
  • FIG. 35 is a schematic diagram of functional restrictions on the use of medical data by each member.
  • the reference numerals used in the above drawings are as follows.
  • the medical data management system of the present invention uses a computer system in which terminals installed at medical institutions, homes, research facilities, and the like, and a medical data management server are connected by communication means such as the Internet or a dedicated line. Physicians, quasi-medical workers, researchers, and medical institutions are classified members, and each member can share medical data generated by doctors' examinations while maintaining independent access rights, thereby ensuring patient privacy. This is a means of enabling remote diagnosis and preserving data for the desired period of access right holders while preserving safety, and making effective use of medical data in the medical field.
  • a medical data management server are connected by communication means such as the Internet or a dedicated line.
  • Physicians, quasi-medical workers, researchers, and medical institutions are classified members, and each member can share medical data generated by doctors' examinations while maintaining independent access rights, thereby ensuring patient privacy.
  • This is a means of enabling remote diagnosis and preserving data for the desired period of access right holders while preserving safety, and making effective use of medical data in the medical field.
  • the medical data management system of the present invention uses a communication network such as a dedicated communication line Internet, and a computer network for members to effectively use medical data registered and stored on the network. It is realized by network and program.
  • Members include patient members, physician members, non-physician medical staff members (for example, nurses and radiation technologists, hereinafter referred to as quasi-medical worker members), medical institution members (for example, hospital members), and researcher members. These members log in to the medical data management system of the present invention through a network using the ID of each member and a login authentication means.
  • the types of members are not necessarily limited as in this embodiment.
  • the patient's own medical data refers to the patient member's own medical data for the patient member, and includes all data generated by the patient member after consulting a physician and data generated by the patient member.
  • the functions that can be used for each type of member are limited, and the functions that can be used by each member are displayed for each member after login by the member. It may be displayed as one function button.
  • Doctor members, associate medical staff members, and patient members can register medical data in the medical data management system of the present invention.
  • the registered medical data has an individual management file, and the access right recording area included in this management file records the access right of the member, and only the member who has the access right is recorded.
  • the medical data can be accessed.
  • access right addition authentication means is prepared as a means for members involved in medical treatment (physician members and quasi-medical staff members) to obtain access rights. Authentication measures are managed by the patient member. Physician members or associate medical staff members can access from patient members for consultation After receiving the disclosure of the authentication means for adding the right and entering the authentication means for adding the access right of the patient member to the medical data management system, the system can be used as a medical examination (hereinafter referred to as the “diagnosis mode”). The access right can be additionally recorded in the medical data management file.
  • the access right to the newly registered medical data in the “examination mode” is the power that will first be granted to the doctor member or the quasi-medical worker member who registered the medical data. Under the principle that the owner is the patient himself, access is also given to patient members.
  • patient members can register only their own medical data, and it is not necessary to enter authentication means for adding access rights at the time of registration, and access rights to medical data registered by patient members are initially granted only to patient members. Will be done.
  • the right to access the medical data that has been migrated from another database and stored is initially given only to patient members.
  • Patient membership with medical data registered in the medical data management system Visiting another medical institution and providing the access right addition authentication means to other doctor members or quasi-healthcare professional members will increase the access right Physician members or associate medical staff members who have been provided with authentication means will be able to gain access to already registered and stored medical data.
  • the authentication means for adding access right is managed by the patient member and can be changed by the patient member, if the patient member changes, the doctor member or the associate medical staff member can know in the past It is no longer possible to acquire new access rights to medical data without access rights by using the access right addition authentication means. Even if the authentication method for adding access rights is changed, medical data that already has access rights can still be accessed, and members are guaranteed access rights to medical data acquired by legitimate means. . With this feature, for example, a doctor The member is not unilaterally stripped from the patient member of the medical data on which the diagnosis was based.
  • Physician members can mainly register, view, process, register diagnostic comments, request remote diagnosis, and undertake remote diagnosis, etc. for medical data.
  • Patient members can register, view, process, and request remote diagnosis of medical data.
  • Medical institution members hospital members are facility members who perform administrative tasks such as reception work for patient members, and can become cost bearers when the medical data management system of the present invention is used as an electronic medical record of a medical institution. .
  • Researcher members can search, browse, and process medical data for research, education, and learning only for medical data that the patient member has approved for research, but are not involved in clinical practice.
  • the requester of the remote diagnosis when requesting a remote diagnosis, the requester of the remote diagnosis must be a member who already has an access right to the medical data used for the remote diagnosis.
  • the requestee of the remote diagnosis can access the medical data.
  • access rights at the time of remote diagnosis are secured without relying on authentication means for adding access rights.
  • a password for mouth login is used as an example of authentication means for mouth login, and a password as an example of authentication means for adding access right is called a diagnosis key.
  • a one-time password is used as an example of a one-time authentication means, and this is called a one-time password.
  • the disposable authentication means is an authentication method that can be used only once to release this protection when protection is set for the act of adding access rights to medical data.
  • the disposable authentication means includes “general-purpose disposable authentication means (general-purpose one-time password in this embodiment)” that can be used in common for all protected data, and protection for specific medical data. There is a “specific disposable authentication and certification means (specific one-time password in this embodiment)” that can only be released.
  • one general-purpose one-time password can unlock any one of them, while a special one-time password protects it.
  • medical data that has been set it can only be released with a specific one-time pass code created for each medical data. The details will be described below with reference to FIGS.
  • a network system built on the Internet 117 an in-hospital network 1_8 built in large-scale medical institutions 1-15, and a medium-scale medical institution 1-1 1
  • the in-hospital network 1-9 established in 6 and the data acquisition reference terminal 1 1 2 installed in the small medical institution 1 1 1 7 are connected via a power S communication line to form a network.
  • This network can be constructed in any suitable form such as VPN, WAN, leased line, etc.
  • the network system built on the Internet 117 includes a data management server 111, 112, 1-3 and a mirror certificate authority 116a, 1- provided above the data management server. 6 b and a root certificate authority 1-6 are provided.
  • the servers are linked by encryption communication, and processing such as registration, storage, browsing, and access right management of medical data is performed.
  • Authentication of each data management server 11-1, 1-2, 1-3 during cryptographic communication is distributed and processed by the root authentication station 1-6 and the mirror authentication UE stations 1-6a, 1-6b.
  • Each data management server 111, 1-2, 113 stores medical data, member information, and management information (medical data management file, other information, etc.) files, and operates medical data. Programs are stored and managed by the administrator. Is operated.
  • the network system constructed in 15 is equipped with a pledge-data server 1-4 and a data retrieval reference terminal 110, and is managed and operated by an administrator, etc. Used by A and others.
  • the network system constructed in the medium-scale medical institution 1-16-1 has a pledge cache server 1-5 and a data acquisition reference terminal 1-11-1, and is used by the doctor member B etc. I have.
  • the small medical institution 1_17 has a data capture reference terminal 1-12, and is used by the medical member C and others.
  • the bridge data server 114, the bridge's cache server 115 are connected to the data acquisition reference terminal 1-1-10, 1-1-1 via the hospital network 1-8, 1-9, respectively. It is connected to the data management server 111 via the Internet 117.
  • the Bridge ⁇ data server 114 has a function to store medical data registered at the large-scale medical institution 115, and a request from the data acquisition reference terminal 111-10 of the large-scale medical institution 1-115. It has a function to temporarily store medical data registered in large medical institutions other than the large medical institution using the existing medical data, which is expected to reduce the processing time when requesting data again and improve security. It is planned.
  • a large-scale medical institution 115 can store hard disk medical data (original medical data) 114a, medical data, member information, and management information. And a hard disk 114b having a cache function.
  • the bridge's cache server 115 has the function of temporarily storing medical data requested by the data capture reference terminal 1-111 of a medium-scale hospital 1-116. It is expected to shorten the processing time when requesting data and improve security.
  • the bridge 'cache server 1_5 includes a hard disk 1-5b having a function of caching medical data, member information, and management information.
  • data capture and reference terminals 1-1-2 1-1-3 1-114 are connected via the Internet 1-7
  • Each can be connected to the data management servers 1_2, 1-3, and 1_3.
  • Each of the above servers and terminals can be constructed by an appropriate operating system such as Windows NT (trademark), Windows XP (trademark), and Linux (trademark).
  • the member information stored in the hard disk 1-1a, 1-2a, 1-3a of the data management server 1-1, 1-1-2, 1-3-3 includes the member information file at the time of member registration
  • Figure 2 shows examples of member information files 2-1 and 2-2 for patient and doctor members. Note that the above hard disk can be replaced with another storage device such as a semiconductor disk.
  • the patient member's member information file 2-1 contains the member ID, personal identification information such as the patient's name, address, date of birth, telephone number, payment method, and authentication method for login (for example, Password for mouth login), authentication means for adding access rights (for example, a medical examination key), automatic storage abandonment flag 2-1a, medical data number with access right, general-purpose disposable authentication means 2 _ 1b (disposable In this embodiment, one of the authentication means is a general-purpose one-time password, which is stored as needed.
  • the member information file 2-2 of the doctor member contains the member ID, personal identification information such as the doctor's name, address, date of birth, telephone number, payment method, information on the member of the medical institution, login Authentication information (eg, password for login), remote diagnosis related information such as specialty field, storage liability automatic abandonment flag 2-2a, and medical data number with access right are stored.
  • Fig. 3 shows an example of the structure of the medical data management file.
  • the medical data management file 3 consists of the basic part 3-1 and the access right recording area 3-2.
  • the basic part 3-1 contains medical data numbers, medical data storage locations, medical data capacity, and access during examinations.
  • specific disposable authentication means 3 _ 1a one of the disposable authentication means and specific one-time password in this embodiment
  • open range for research use Diagnosis, etc.
  • the access right recording area 3-2 For each member having the access right, the medical data number, the member ID, the date and time of access right acquisition, the access right additional member (the access right The member ID of the added member), the access right addition act (how the access right was added, such as consultation and remote diagnosis), the important flag 3-2a, the unnecessary flag 3-2b, etc. There is information.
  • FIG. 3 shows an example of the structure of the basic part 3-1 of the medical data management file 3, the example of the basic part data 3-3, and the access right record of the example of the structure of the access right recording area 3-2. Data examples 3-4 of the area are also shown.
  • the data capture reference terminals 1 _ 10, 1-11, 1-1 1, 1-1 2, connected to the Internet 1-7 in FIG. 1-13 or 1-14 select the online member registration menu 5-2 from the homepage screen 5-1 of this system as shown in Fig. 5 as shown in Fig. 5, and select the member registration screen. (Not shown) is displayed, and the member type is appropriately selected from the selection buttons of patient members, doctor members, associate medical staff members, medical institution members, and researcher members (S4-1).
  • a large-scale medical institution 1-15 wants to use the medical data management system of the present invention, select a medical institution member from the selection button, and if a researcher wants to view medical data as research material, Select a researcher member.
  • a patient member a can register as a member from the residence 118, and after registration, a member ID, a temporary password for mouth login as authentication means for mouth login, and a consultation key as authentication means for adding access right are given ( S4—5).
  • a formal membership registration may be made after the identity of the member is confirmed by a copy of a doctor's license or a nurse's license.
  • the personal information at the time of registration as a member is recorded in the member information files 2-1, 2-2, as shown in Fig. 2, for example.
  • a list of medical data numbers with access rights is also stored, and each time the medical data to which each member has access rights is changed, the list of medical data numbers with access rights is updated.
  • FIG. 1 Each member is connected to the data capture reference terminals 1_10, 1–11, 1–12, 1–13, and 1–14 connected to the Internet 117 shown in Fig. 1. Then, the home page screen 5-1 of the system shown in Fig. 5 is reached, and the login is performed with the member ID and the login password. After the login for each member, the initial screen 6 is displayed.
  • Notification includes notification when the person in charge of storage of medical data has been notified, notification that access rights have been added to medical data for which access right addition notification has been set, and remote diagnosis. There are notifications and messages from the operator of the medical data management system.
  • a global menu is displayed, which is a function button that summarizes the functions that can be performed by the member according to the member type. From this global menu, the user can switch to the processing screen desired by the member. Movement is realized.
  • the button may be assigned to a function key arranged on an input device such as a keyboard.
  • the display screens of the present management system shown in the above and later drawings show one design example, and therefore, other screens that can be easily made by those skilled in the art based on their knowledge. The design is also included in the scope of the present invention.
  • the global menu includes functions that differ depending on the type of member, and is always displayed in principle regardless of which screen you move to, and only the buttons that can be executed on that screen are valid.
  • FIG. 7 shows the Global Menu 7 for physician members
  • Figure 8 shows the Global Menu 8 for patient members
  • Figure 9 shows the Global Menu 9 for associate medical staff members
  • Figure 10 shows the Global Menu 10 for medical institution members
  • Figure 11 is an example of a global menu for researchers members. (Hereafter referred to as the global menu for each member 7, 8, 9, 10 and 11)
  • the window opened by the “Information” column 6-6 shown in Fig. 6 and the global menu 7, 8, 9, 10, 10 and 11 for each member includes a close button 6_7. Is closed.
  • a login password change button 6-1 shown in FIG. 6-2 As a function button common to all members provided in each member's global menu 7, 8, 9, 10 and 11, a login password change button 6-1 shown in FIG. 6-2, Login history button 6-3, Accessible data button 6_4, Storage responsibility information button 6-5.
  • a function common to all members provided in each member's global menu 7, 8, 9, 10 and 11 is a function to change the login password. Click the login password change button 6-1. When selected, move to the login password change screen (not shown).
  • the input of the current login password is requested. If the entered password is true, the input of the new login password is requested multiple times. If all of the entered new login passwords match, the system accepts the change of the login password and registers it in the system.
  • member basic information button 6-2 as a function button common to all members provided in each member's global menu 7, 8, 9, 10, 10 and 11. You can check and make changes.
  • check basic member information such as name, gender, date of birth, address, occupation, telephone number, e-mail address, payment method of usage fee, etc., and information that may change, for example, address, telephone number, etc. Can be changed.
  • Physician members can register medical departments, specialty fields, and conditions for remote diagnosis in the basic member information.
  • the accessible medical data list screen 13 the accessible medical data numbers recorded in the logged-in member information files 2-1 and 2-2 in FIG. Then, the medical data management file is searched, and from the member information file 2-1 of the patient member and the information in the medical data management file 3 in FIG. 3, the name of the patient member, the patient member ID, the date when the medical data was created, In other words, the date when the medical data was generated, which is the date when the patient member received the examination or consultation, the date when the medical data was registered in the system, the data type, the data size of the medical data, and a simple comment to identify the medical data. From among the items, the items that the logged-in member is allowed to view are displayed.
  • Patient members have no access restrictions on the accessible medical data list screen 13, but researcher members will only see what they are authorized to see, and will generally not see the patient's name or patient member ID. ing.
  • the storage responsibility medical data list screen shown in Fig. 14 is displayed by pressing the storage responsibility information button 6-5 in Fig. 6. 1 4 can be displayed, and important / unnecessary input fields 1 4 1 1 While setting the list, the important flag 3-2a and the unnecessary flag 3-2b of the medical data shown in Fig. 3 are set.
  • the browsing screen (for doctors) 18 is opened in the normal mode (non-diagnosis mode), and “Normal mode” is displayed in the accessor.mode column 18-1.
  • the patient reception screen (not shown) can be displayed by using the patient reception button 10-1 in the global menu 10 for medical institution members shown in Fig. 10, and today's outpatient reception can be performed.
  • a member is accepted outpatient, it is recorded in an outpatient consultation record file (not shown).
  • the outpatient consultation record file is stored in the data management server 111 from the data acquisition reference terminal 110 of the large medical institution 1-15 shown in Fig. 1, for example. And you can register a simple comment.
  • the global menu for medical institution members 10 shown in Fig. 10 has an inpatient reception button 10-2, which is used to receive inpatients and record that the patient member was admitted. (Not shown).
  • the hospitalization procedure record file is stored in the data management server 111 shown in Fig. 1, and can have the hospitalization procedure information and simple comments.
  • the global menu for physician members 7 in Fig. 7, the global menu for quasi-healthcare professional members 9 in Fig. 9, and the global menu 10 for medical institution members in Fig. 10 include: There are 1 0-3, and by selecting this button, the Examined Patient List (Outpatient) screen 15 shown in Fig. 15 is displayed.
  • Group menu for physician members ⁇ Group menu for quasi-healthcare professional members 9
  • Global menu 10 for medical institution members include in-patient buttons 7-2, 9-2, 10-4 Yes, by selecting this button, a list of patients (in-patient) screen (not shown), which is a list of patients currently in the hospital, is displayed.
  • the Physician Member's Global Menu 7 has a new patient button 7_3, from which a physician clicks to select a patient member from an outpatient or in-patient list and If you click on the patient button, the system requests a consultation key. If you enter it correctly, the consultation patient data list screen 16 shown in Fig. 16 will be displayed.
  • the system When selecting a new patient button 7-3 without selecting a patient member, the system requests both the patient member ID and the diagnosis key as shown in Figure 17 as shown in Fig. 17.
  • the window 17 is displayed. If you enter it correctly, the screen 16 for the list of patient data to be examined shown in Fig. 16 is displayed.
  • a consultation end button 7-4 which ends the consultation mode, and before the consultation mode such as the consultation patient list (outpatient) screen 15 in Fig. 15 Return to the screen.
  • the compound search is performed using the information described in the medical data management file 3 shown.
  • the 12 is an AND condition in a line and an OR condition in each line.
  • the name "Yamada” Enter the age as “10 to 20”, the diagnosis as “diabetes”, and in the second line of the search condition, enter the name as “Yamada”, the age as “10 to 20”, and the diagnosis as “gastric ulcer” ].
  • the patient member's name contains “Yamada”, the age is 10 to 20 years, and the diagnosis comment contains the words "diabetes” or "stomach ulcer”. Patient members who have medical data are extracted.
  • the common functions of the global menu 7 for physician members in Fig. 7, the global menu 8 for patient members in Fig. 8, and the global menu 9 for quasi-healthcare professional members in Fig. 9 include a new data registration button for medical data 7-6, There are 8-4 and 9-1, which register new medical data.
  • This doctor search button is used as shown in Fig. 22.
  • the remote diagnosis underwriting doctor search screen 22 is opened.
  • the researcher member's global menu 11 in Fig. 11 has a medical data search button 1 1 1 1. This button opens the medical data search condition input screen 28 shown in Fig. 28. Enter search conditions in the search condition input field 2 8— 1 and execute the search.
  • the global menu 7 for physician members shown in Fig. 7 has remote diagnosis buttons 7-8, which are used to display the remote diagnosis request list screen 26 shown in Fig. 26.
  • the accesser-mode column 18- L mode is displayed as “Normal mode”.
  • the global menu 8 for patient members shown in Fig. 8 has a consultation key change button 8—1 that can change the consultation key (password for adding access right), which is an authentication means for adding access rights. Move to the examination key change screen with the button, and enter the examination key according to the request of the medical data management system.
  • a consultation key change button 8—1 that can change the consultation key (password for adding access right), which is an authentication means for adding access rights. Move to the examination key change screen with the button, and enter the examination key according to the request of the medical data management system.
  • the medical data management system will require the entry of a new examination key, so the examination key is changed by entering the new examination key and selecting the register button.
  • the medical data management system will allow the change to the new consultation key, but this can be recorded due to the possibility of unauthorized access.
  • a one-time password creation button 8-2 (one example of a button for creating a disposable authentication means) on the global / menu 8 for patient members. Move to the password creation screen (not shown).
  • the route to reach the detailed medical data view screen for using medical data is shown using FIG.
  • the member After logging in (S35-1-1), the member can view the detailed medical data screen for each member using a route that can be used for each member (for example, see Fig. 1 for patients). 9.
  • the route from the new consultation patient button in the global menu (S35-2) and the route from the remote diagnosis button (S35-3) are only available to physician members, and the route from the accessible data button (S35-2).
  • 35-5) and the route from the management responsibility information button (S35-6) are available to all members, and the route from the new data registration button (S35-4) is a doctor member and a quasi-medical worker member. Available to patient members.
  • the doctor's name is displayed in the accessor column 18-10, and the medical examination is indicated in the accessor's mode column 18-1 as the medical examination. Is displayed, and when the medical data details browsing screen 18 is opened other than in the consultation, “Normal mode” is displayed.
  • FIG. 1 the manner of use of the medical data management system of the present invention will be described with reference to FIGS. 1, 7, 10, 15, 16, and 18.
  • FIG. 1 the manner of use of the medical data management system of the present invention will be described with reference to FIGS. 1, 7, 10, 15, 16, and 18.
  • the medical institution member When a new patient receives an outpatient clinic at a large medical institution 1-15 shown in Fig. 1, for example, the medical institution member accepts the patient using the patient reception button 10-1 on the global menu 10 shown in Fig. 10. .
  • the patient list (outpatient) screen 15 shown in Fig. 15 is displayed.
  • the patient is identified and the new patient button 7_3 in Fig. 7 is clicked, a medical examination key is requested, and if the input is correct, the patient data list 16 for the medical examination shown in Fig. 16 is displayed and accessed from this time.
  • the “diagnosis mode” is displayed in the user's mode field 16_1.
  • the patient data list screen 16 shown in Fig. 16 contains medical data to which the doctor member already has access rights (the access rights of the doctor members are recorded in the management file). Both medical data) and medical data for which the doctor member has not yet obtained access rights (medical data for which the access rights of doctor members are not recorded in the management file) are displayed.
  • the access right column 16-2 of the patient data list screen for examination 16 will be displayed as "Not Acquired", and the patient member will have additional access right at the time of medical examination. If “Warning” is set as protection for the additional access right indicated in column 16-3 or the additional access right column at the time of remote diagnosis, the access right is added to the access right column 16-2. Additional restriction "1" Force If “One-time password protection” is set, access right additional restriction "2" is displayed.
  • the doctor selects medical data from the patient data list screen 16 to be examined, and clicks the “Open medical data” button 16 — 5 to display the detailed medical data viewing screen (for doctors) shown in Figure 18
  • the medical data management system recognizes the processing up to the selection of the medical examination end button 7-4 in the global menu 7 in FIG. 7 as the "medical examination mode".
  • Diagnosis mode means a state in which the access right of the doctor member can be additionally registered in the medical data of the patient member.
  • a doctor member registers a new data registration button in the global menu shown in Fig. 7.
  • the medical data management system requests the patient member ID and medical examination key for which new medical data is to be registered, and when these are entered, it enters the medical examination mode and a new medical data number is created for the patient member. You.
  • the medical data management system describes the created medical data number and the member information of the patient member at that time, and the amorphous data box 18-13 is blank. Display the screen (for doctors) 1 8 in “Diagnosis mode” So enter the irregular data and click the save button 18_4 to save the medical data to the system.
  • the initial values of the right to access this new medical data are the doctor A displayed in the accessor column 18-10 of the new medical data and the patient a displayed in the display data column 18-11. .
  • the patient member determines in advance the additional access right at the time of medical examination and the additional access right at the time of remote diagnosis of the medical data.
  • a function for automatically registering the initial value of may be provided. This is a function to protect the privacy of patient members immediately after registration of medical data, even if members other than patients newly register medical data.
  • the medical data management system records the created medical data number and the member information of the patient member at that time, and displays the detailed medical data browsing screen (for the patient) 19 with the amorphous data shown in Figure 19 blank. Enter the irregular data, and finally save button 1 9 Click 1 to save to the system.
  • the initial value of the access right to the medical data is only the patient member.
  • the medical data details browsing screen (for physicians) in Fig. 18 (for doctors) 18 has the following buttons as local menus: Add diagnosis button 18-5, Add comment button 18-7, Copy medical data 'Process button 18--12, There are a save button 18_4, an access right confirmation button 18_20, an important / unnecessary registration button 1 8—2 1, and a remote diagnosis request button 18—17.
  • the medical data details shown in Fig. 19 are provided.
  • the browsing screen (for patients) 19 has an access right addition restriction change button 1911 as a low power ⁇ menu.
  • the access right addition restriction change button can be used only by patient members.
  • the Add diagnosis button 1 8—5 in Fig. 18 is only available to physician members. Click it to display additional diagnosis pox 18—6, enter a diagnosis name, and click the Save button 18—4 to diagnose.
  • the registered doctor name is registered in the medical data management system. Until you click the save button 1 8—4, you can make corrections. If you close the medical data details viewing screen (for doctors) 1 8 without clicking save, the diagnosis created by this operation will be discarded. You.
  • the comment addition button 18_7 is available to physician members, quasi-healthcare professional members, and patient members. Click the Add comment button 18-7 to display the additional comment box 18-8. Enter a comment and click the save button 1 8—4 to register it in the medical data management system with the comment registrant name. It is possible to make corrections until the save button 18-4 is tickled. For example, if a doctor member closes the medical data details browsing screen (for doctor) 18 without clicking save, this operation will be performed. The created comment is discarded.
  • the medical data copy and processing buttons 18-12 can be used by doctor members, associate medical staff members, patient members, and research members, and the medical data copy and processing buttons 18-12 can be used. When clicked, a new medical data detail browsing screen and a new medical data number are created, in which only the irregular data without the information in the diagnostic boxes 18-6 and comment boxes 18-8 are copied.
  • the edited information can be saved in the medical data management system.
  • the medical data type column 18-16 of the medical data copied and edited is initially set to "copy medical data", and the initial value of the access right to this data is the creator and the original medical data. Become a patient member of
  • the access right confirmation button 1 8—20 is a button for confirming the members who have access to this medical data, and when clicked, the access right holder list screen shown in Fig. 20
  • Important flag 1 8—2 3 indicates that even if the member has set to automatically abandon the storage responsibility for all data (displayed in the storage condition setting column 18—2 2), This is a sign that does not automatically abandon storage liability.
  • the unnecessary flag mark 18_24 is a mark indicating that the member has declared that the medical data is unnecessary.
  • the unnecessary flag has priority.
  • the access right addition restriction change button 191-12 shown in Fig. 19 is a function button that can be used only for patient members, and is used to restrict access right addition when adding access right to medical data. It changes to each state of no protection, warning setting, and one-time password setting.
  • the additional access right restrictions are displayed in the access right additional restriction boxes 19-1 13 at the time of consultation and the additional access right restriction boxes 19 9-14 at the time of remote diagnosis in Fig. 19.
  • buttons 18-17 in Fig. 18 are buttons for requesting remote diagnosis.
  • the remote diagnosis will be described with reference to FIGS. 6, 7, 18, 18, 22, 23, 24, 25, and 26.
  • doctor members In conducting the remote diagnosis, doctor members register information on the remote diagnosis, extract the referral destination (request for the remote diagnosis), request the remote diagnosis, create a reply to the remote diagnosis, and evaluate the remote diagnosis. .
  • Physician members must first register the basic member information button on the global menu shown in Fig. 6.
  • the medical data detailed browsing screen (for doctors) 18 of the medical data to be requested for remote diagnosis shown in Fig. 18 can be displayed using any of the methods described above. Open with
  • a list 23 of doctors who can accept remote diagnosis is displayed as shown in FIG. 23, and a doctor to request a remote diagnosis is selected from the list.
  • the screen returns to the medical data details browsing screen 18 shown in Fig. 18 where the referrer (requester) and referral address (recipient) are automatically entered with the referral box 18-2 and the return box. 1 8—3 is created, and the requester introduces the contents of the referral box 1 8 Fill in 1.
  • the save button 18-4 When the save button 18-4 is clicked, the contents of the introduction box 18-2 are stored in the medical data management system, and the access right recording area 3-2 of the medical data management file shown in Fig. 3 is received. The requester's member ID is additionally recorded, and a request for remote diagnosis is sent to the destination.
  • the doctor of the remote diagnosis requester can confirm that there is a request for remote diagnosis in the notification field 6-6 on the initial screen after mouth gushing in Fig. 6.
  • the requestee clicks the remote diagnosis button 7_8 in the global menu 7 shown in Fig. 7, and clicks and selects the medical data for which a reply is to be created from the remote diagnosis request list in Fig. 26.
  • the medical data detailed browsing screen (for doctor) 18 in FIG. 18 is displayed in the normal mode.
  • the introduction box 18 _ 2 and the return box 18-3 are created by the remote diagnosis requester, so the return box 18- Enter the findings from the remote diagnosis in 3 and click the save button 18-4 to save.
  • the requester of the remote diagnosis can confirm that the remote diagnosis return has been created in the notification area 6-6 on the initial screen 6 after the mouth login in Fig. 6 and input the evaluation for the next remote diagnosis. .
  • FIG. 6 An illustration of remote diagnosis and reverse evaluation will be described with reference to FIGS. 6, 18, 21, and 27.
  • the client After the remote diagnosis has been performed by the client, the client opens the medical data details browsing screen (for doctors) 18 in Fig. 18 and the reply is entered in the reply box 18-3.
  • An evaluation button 18-18 is provided next to the introduction box 18-2. The evaluation button 18-18 is valid only for the client of the remote diagnosis.
  • Evaluation ⁇ In the reverse evaluation window 27, there are a requester's entry field, an evaluation comment field 27 _ 1 for the return of the remote diagnosis, and a five-level evaluation field 27-2.
  • the requester of the remote diagnosis enters the evaluation in the evaluation comment column 27 _ 1 and the evaluation 5 stage column 27-2 and clicks the registration button 27 _ 3 to register, and the evaluation is added to the requestee Will be notified.
  • the requestee of the remote diagnosis is notified in the notification section 6-6 of Fig. 6 that the evaluation for the remote diagnosis has been added.
  • the requester clicks the reverse evaluation button 18-19 from the medical data detail browsing screen (for doctors) 18 in Fig. 18 to open the evaluation ⁇ reverse evaluation window 27 shown in Fig. 27.
  • the client receives the notification of the negative evaluation performed by the requestee, opens the Evaluation 'Reverse Evaluation window 27, examines the details of the negative evaluation, and checks the check box 27–10 to publish the details. , 27-1 1 Check the box and click the register button 27-12 to register.
  • FIG. 1 is a diagrammatic representation of FIG. 1
  • the patient member uses the additional access right change restriction buttons 19-12 on the local menu in Fig. 19 to view the medical data details browsing screen (for patients) in Fig. 19 to restrict additional access rights to medical data.
  • "No protection”, “Warning”, and "One-time password protection” set additional access right restrictions.
  • Patient members can create one-time passwords (disposable authentication means) based on the flow in Figure 29.
  • the patient member enters the member ID and password, logs in to the medical data management system (S29-1), displays the global menu for patient members (S29-2), and selects the one-time password creation button. (S29-3).
  • the one-time password to be created is a general-purpose one-time password that can be used in common for all protected data. If there is any (S29-5), a list of currently valid general-purpose one-time passwords is displayed (S29-6). If additional creation is required, enter the number of additional creations (S29-7, S29-8) The system creates a general-purpose one-time password, sets an expiration date (S29-9), registers the one-time password in the patient member basic information file (S29-10), and then creates the password. The displayed general-purpose one-time password is displayed on the screen (S29-11).
  • the one-time password to be created is a specific one-time password that protects specific medical data (S29-1-2)
  • the one-time password protection is set from the medical data. From the list of medical data (S29—13), select the medical data (S29—14), and the currently valid specific password is displayed (S29—15). If necessary, enter the number of additional creations (S 29-16, S 29-17), a specific one-time password will be created (S 29-18), and register it in the medical data management file Then, the created one-time password is listed on the screen (S29—20) (S29—19). Furthermore, if the creation of these one-time passcodes is based on the data acquisition reference terminal 111 shown in FIG. 1, the created one-time passcodes can be printed by a printer. When a one-time password is created by connecting to the Internet using a mobile phone or other palmtop mobile communication device, it is displayed on the monitor screen of the device.
  • the one-time password may be automatically created by the system using random numbers or the like, or may be created by the user himself selecting an arbitrary character string. .
  • Patient members can set three additional access right restrictions, ⁇ No protection, '' ⁇ Warning, '' and ⁇ One-time password protection, '' for additional access rights. Also, at the time of remote diagnosis, processing for additional access right restriction is performed.
  • the additional access right column at the time of consultation 16-3 in Fig. 16 contains the additional access right at the time of consultation in the basic part 3-1 of the medical data management file 3 shown in Fig. 3 (Examination of data in the basic part 3-3).
  • the additional access right at remote diagnosis is displayed in the additional access right column at the time of remote diagnosis in the basic part 3 _ 1 of the medical data management file 3 in Fig. 3. Displays the value of Restriction (Restriction on addition of access right at remote diagnosis in Data Example 3-3 of Basic Part).
  • the access right addition restriction process at the consultation is performed based on the flow shown in FIG.
  • the doctor member enters the member ID and password, logs in to the medical data management system (S30_1), selects a patient member, and clicks on the new consultation patient button (S30-2). Since a key is required, obtain and enter the consultation key from the patient member (S30-3). If the consultation key is wrong (S30-4), an error is displayed and the process ends (S30-8). If the examination key is correct (S30-4), the examination mode is determined and the examination target patient data list screen 16 is displayed (S30-5). The doctor member selects the medical data to be accessed on the examination target patient data list screen 16 and clicks the “Open medical data” button 16-5 (S30-6), and grants the access right to the selected medical data. If the doctor member already has it (S30-7), the medical data details browsing screen (for doctor) 18 in FIG. 18 opens (S30_19).
  • the processing is performed as shown below according to the additional access right at the time of the examination set by the patient member. Is made.
  • the patient member can add the access right at the time of the consultation. Since this indicates that there is no restriction, the access right of the physician member is additionally recorded in the medical data management file (S30_18), and the medical data is browsed on the detailed medical data browsing screen (for the physician) 18. It is displayed (S30-19).
  • the doctor member approves the warning (S30-13) in the input for approval (S30-12)
  • the doctor member notifies the patient member that the doctor member has accessed (S30-17).
  • the access right of the doctor member is additionally recorded in the medical data management file (S30-18), and the medical data is displayed on the medical data detailed browsing screen 18 of FIG. 18 (S30-19).
  • the doctor member enters the member ID and password, logs in to the medical data management system (S31-1), selects a patient member (S31-2), and the patient data list screen 16 to be examined is displayed in the normal mode. Is done. At this time, “Normal” is displayed in the accessor 'mode column 16-1 (S31-3). When the medical member selects the medical data to be accessed on the examination target patient data list screen 16 and then clicks the “Open medical data” button 16-5, the selected medical data is displayed.
  • the system displays that the access is not allowed (S31-6), and the process ends (S31-7). If the doctor member already has access to the medical data (S31-5), the medical data details browsing screen (for doctor) 18 in FIG. 18 is opened (S31-8).
  • the member approves the notification of the remote diagnosis request to the patient member (S31-14), the member member is notified that the member has requested the remote diagnosis (S31-18), and the remote diagnosis is performed. Display the list of acceptable doctor members (S31-19) and request remote diagnosis When a doctor member is selected (S31-20), the access right of the doctor member is additionally recorded in the medical data management file (S31-21), and a request for remote diagnosis is sent to the doctor member (S31_22). ), The process ends.
  • the patient member can control the addition of the access right, so that remote diagnosis can be safely realized.
  • the member information setting screen (not shown) opened with the member basic information button 6-2 shown in Fig. 19 will be displayed.
  • the research open check box for the diagnostic box (for patients) 1 9-4 the research open check box for the comment box (for patients) 1 9-5, 1 9-6, the research open check box for the referral box (for patients)
  • the research open check box for the referral box By checking 1 9—7, you can decide whether to make it public.
  • diagnosis box only the diagnosis box, comment box, and referral box will be made public if both the patient member and the creator have indicated their intention to make it public.
  • the medical data search condition input screen 28 shown in Fig. 28 is displayed.
  • FIG. 2 When one of the extracted medical data is selected, the screen shifts to a detailed browsing screen (not shown) of the medical data, and an access right is added to the medical data as a researcher member.
  • Fig. 2, Fig. 3, and Fig. 32 show an example of a method for determining a member responsible for storage to enable the selection and storage of important medical data during the period required by members, including patients. This will be described with reference to FIGS. 33 and 34.
  • Fig. 32 schematically shows an example of data 3-4 in the access right recording area of the medical data management file 3 shown in Fig. 3.
  • the state transition of the access right recording area is shown in the case where there is medical care as an institution member, patient a as a patient member, doctor A and doctor B as doctor members.
  • Fig. 33 members of the medical care institution, patients, physicians, quasi-healthcare workers, and researchers are prioritized in order to determine the members responsible for custody. If it is determined that access rights are given priority in the order in which they are owned, the storage member with the first priority is medical, and the access right recording area of the medical data management file at this time is the state A (S 3 2— 1).
  • the method for determining the custody member is not limited to the method described in this embodiment, but may be changed according to the usage of each medical institution.
  • the custody transfer is transferred to the next candidate for the custody member, patient a, and the patient a is notified that the custody has been transferred.
  • Patient a is notified of the transfer of custody and, if accepted, becomes the custody and becomes the state B (S32-2) in Figure 32.
  • the custody transfer is transferred to the next candidate.However, in the next candidate member of custody, doctor A becomes a physician. Because he has access rights older than B, the next custody member is determined to be Doctor A, a notification is given to Doctor A that custody has been transferred, and the access right record area is in state C (S32— 3)
  • Members who have access to the medical data management file can access the medical data until it is deleted from the system, even if the member has declared unnecessary. In this way, a mechanism is realized in which all members who have access rights to medical data are confirmed to keep the data, and if all members declare unnecessary, the medical data is automatically deleted.
  • the member information files 2-1 and 2-2 in Fig. 2 are stored.
  • the responsibility waiver flag 2 — la, 2-2 a may be set.
  • the automatic abandonment flag of storage liability 2-1 a, 2-2 a If the power is “1”, it indicates that the member is automatically deemed to be unnecessary if he / she is responsible for storing medical data. However, if the storage liability automatic abandon flag 2-1a, 2-2a is “0”, it indicates that the member will be notified each time the member becomes the medical data storage manager. Further, as shown in FIG. 3, each member may set the important flag 3-2a in the access right recording area 3-2 of the management file of the medical data determined to be important.
  • the medical data is particularly important for members who set the automatic storage waiver flag 2-1a and 2-2a to “1”. It does not automatically give up storage liability.
  • Billing to members includes membership fees, system usage fees associated with system use (remote diagnosis, researcher members There is a medical data storage fee.
  • the doctor member who receives the request for remote diagnosis can present the field of specialization and the conditions under which the remote diagnosis is undertaken. However, conditions such as fees may be presented here. In this case, it is assumed that the requesting member requests the remote diagnosis, and the doctor member who receives the request prepares a reply, and a fee is charged, and a part of the fee is collected by the system administrator as a system usage fee.
  • the medical data management system searches for the storage manager from all medical data management files every month, tallies the data amount of the medical data recorded in the management file, and Calculate the amount of stored medical data for each storage, and charge for this.
  • an advertisement may be posted on the initial screen 6 after each member's login as shown in Fig. 6 and an advertisement fee may be collected.
  • the added value of advertising on this system is that it can be sent to a certain type of member, so an effective advertising effect can be expected.
  • the system usage fee and medical data storage fee associated with the use of the medical data management system may be a completely metered system, a fixed fee system, or a combination of the two.
  • the patient who registers the medical data in order for the patient to enjoy the maximum rights and convenience, the patient who registers the medical data must be a member, but the patient must be a member.
  • the medical data management system can be used for the convenience of healthcare professionals.
  • non-member patients can be registered only by physician members, associate medical staff members, and medical institution members, while researcher members cannot register non-member patients.
  • the patient member ID and authentication means for adding access rights are issued, but the authentication means for login is not issued to non-members, and non-member patients can login to this system. Can not.
  • the ID of non-member patients and the authentication method for adding access rights are managed by physician members, associate medical staff members, and medical institution members who have registered non-member patients.
  • Registration of medical data is performed by doctor members, quasi-medical worker members, and medical institution members using non-member patient member IDs and authentication means for adding access rights.Register medical data for access rights of registered medical data. Medical data The storage responsible member is also the member who registered the medical data.
  • Requests for remote diagnosis of medical data of non-member patients can be realized as usual by members who have access rights by adding access rights to other members.
  • non-member patients may register as formal patient members as needed.In this case, the patient member ID can be used continuously, and a new authentication method for mouth login is newly registered and access rights are added. It is desirable to update the authentication means.
  • the patient, the doctor, the medical staff other than the doctor, and the medical institution become members, and the ID of each member is provided with a login authentication means. Effective use of the Internet and effective use of medical data can be achieved.
  • an access right adding authentication means is provided as a means for enabling the member's access right to be newly recorded in the management file, and the access right adding authentication means is provided for each patient member. This has provided a new way to access the medical data of patient members who do not yet have access to them.
  • the access right of the member is recorded in the management file, and the authentication means for adding the access right is provided as a means for enabling the new recording of the access right of the member in the management file.
  • Management file Access to medical data in which access rights have been recorded can be accessed without additional access right authentication means. Acquisition of access rights and retention of access rights are managed independently.
  • members who have access to medical data can grant access to other members, and the disclosure of medical data at the time of remote diagnosis among members of this system is realized. .
  • Patient members can view and disclose their own medical data with the feature that access rights are automatically recorded in the management file of all their own medical data, thereby enhancing the patient's right to know. .
  • the means for the patient members themselves to save information such as their physical condition can be provided. Medical information is managed.
  • the medical data range approved by the patient member is recorded in the medical data management file, and the medical data permitted to the researcher member can be released. Because it is the will of the patient, it can be regarded as medical data that has undergone informed consent, and is highly useful.
  • the person in charge of storing the medical data is determined in the order in which the medical data is required, so even if multiple members have access rights to the same medical data, The person responsible for storing the data is clear. If the custodian relinquishes his role, all members with access rights can become custodians by transferring the custodian's role to the next candidate. Necessary medical data will not be destroyed in situations where personnel cannot recognize it.
  • the amount of medical data storage for each member is totaled, and a function is provided that enables charging for this.
  • a fee structure that takes into account the amount of medical data stored can be constructed, and the amount of data storage and usage fees can be balanced.
  • the patient member can teach the authentication method for adding access rights to others, but by changing it, the old authentication method for adding access rights can be changed. It can be invalidated, and can be expected to protect medical data, which is its own personal information.
  • This medical data management system is designed so that when another member adds an access right to the medical data specified by the patient member, By alerting the patient member of the notification, the effect of suppressing the unscrupulous disclosure of medical data as personal information by others can be expected.
  • the act of the other member is recorded and notified to the patient member, so that the patient member knows the member who has given access to the medical data of the patient and the member who has been given the access right. I can do it.
  • the medical data management system of the present invention can register a disposable authentication means that allows another member to add an access right to the medical data only once for the patient's own medical data specified by the patient member. Strict medical data protection by setting the authentication means to medical data so that other members performing additional access rights can be required to enter the disposable authentication means Action can be expected.
  • a doctor member who is a requestee of remote diagnosis and medical treatment is provided with a function for posting information related to remote diagnosis and medical treatment in a specialty area, etc. Can expect the effect of their own publicity, and at the same time, the client can expect to easily obtain the information for selecting the doctor member who will be the client for remote diagnosis and medical treatment.
  • the doctor member or patient member becomes the requester of the remote diagnosis and medical treatment, and after the medical doctor member who is the requestee performs the remote diagnosis and the medical treatment, the information provided by the doctor member who is the requestee provides information such as the diagnosis. Since the client who is the client can register for the evaluation of, the remote diagnosis and medical treatment will be evaluated by the client, and the quality can be expected to be maintained. In addition, since the requestee who received the evaluation can register the reverse evaluation to the evaluation made by the client in the medical data management system, the evaluation that has a certain tendency that is not suitable for remote diagnosis It can be expected to have an effect of keeping the morale of using the system by the network by checking the requesting client or the client performing the extreme evaluation.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Human Resources & Organizations (AREA)
  • Operations Research (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Data Mining & Analysis (AREA)
  • Quality & Reliability (AREA)
  • Tourism & Hospitality (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Medical Treatment And Welfare Office Work (AREA)
  • Measuring And Recording Apparatus For Diagnosis (AREA)
  • Storage Device Security (AREA)

Abstract

A medical data management system in which medical data can be shared by a patient, a medical staff, and a researcher on a communication network. The system can store medical data necessary for a user for a necessary period, disclose medical information to the patient, performing effective remote diagnosis, and provide medical data to a medical study. In medical data management systems (1-1, 1-2, 1-3), a member having an ID and log-in authentication means registers, reads, and processes medical data. The systems include a management file for recording an access right and new authentication means or an access right assigning function to another member by an access right holding member as the means for allowing access right additional recording. Storage and discarding of medical data and a cost paying person are decided according to the management file and the information is disclosed to a patient, remote diagnosis is performed, and medical data is used for research.

Description

明 細 書 医用データ管理システム 関連出願の相互参照  Description Medical data management system Cross-reference of related applications
本願は 2 0 0 2年 9月 1 2日に出願された日本国特許出願 特願 2 0 0 2— 2 6 6 2 7 4号に基づく優先権を主張し、 その内容を本願明細書中に援用する。 技術分野  This application claims the priority based on Japanese Patent Application No. 2002-26266274 filed on September 12, 2002, the contents of which are incorporated herein by reference. Invite. Technical field
本発明は、 医療従事者、 患者、 研究者が医用データを効率的、 且つ、 安全に共 有し、 医療、 医学研究、 医療経済の各分野での連携した医用データの活用を可能 とし、重要な医用データを選別保存できる医用データ管理システムに関するもの である。 背景技術  The present invention makes it possible for healthcare professionals, patients and researchers to share medical data efficiently and safely, and to utilize medical data collaboratively in the fields of healthcare, medical research and the medical economy. The present invention relates to a medical data management system capable of selectively storing various medical data. Background art
従来、 医用データは紙面に記録されたカルテや、 X線画像、 C T ' MR Iなど をフィルムとして保存したものであり、他の医療従事者に対する医用データの提 供は、 紙ゃフィルムの提供に依存しているのが一般的であった。  Conventionally, medical data has been stored as film on medical records, X-ray images, CT'MRI, etc. recorded on paper, and the provision of medical data to other healthcare professionals is based on the provision of paper and film. It was generally dependent.
最近導入され始めている電子カルテシステム (以下、 「関連技術 1」 ) は、 医 用データの電子的保管、 閲覧を可能としているが、 従来から存在する紙カルテの 電子化を目的とし、 医師を対象として情報の共有化を図ったものであって、 医用 データの蓄積、 保管、 閲覧の主体は医師を中心として設計されていた。  The electronic medical record system that has recently been introduced (hereinafter referred to as “related technology 1”) enables electronic storage and browsing of medical data, but is aimed at doctors with the aim of digitizing the existing paper medical record. The aim was to share information, and medical data was stored, stored, and viewed mainly by doctors.
又、 特定の施設間において、 遠隔診断システム (以下、 「関連技術 2」 ) が実 用化され始めている。  In addition, remote diagnosis systems (hereinafter referred to as “related technology 2”) have begun to be put into practical use between specific facilities.
複数の病院間でカルテのデータベースとして個人医療情報の共有化方法及び 個人医療情報のデータベース端末が、 日本国特許出願公開 2 0 0 1— 2 9 7 1 5 3号 (以下、 「関連技術 3」 ) に開示されている。 A method of sharing personal medical information as a database of medical records among multiple hospitals and a database terminal for personal medical information are disclosed in Japanese Patent Application Publication No. 2 0 0 1—2 9 7 1 5 No. 3 (hereinafter referred to as “related technology 3”).
関連技術 1によれば、電子カルテシステムは医療者主体のシステムであるため、 医用データの保存義務期間を経過した医用データの保全は医療機関が任意に決 定しており、 患者の希望の如何に拘わらず、 医用データが失われる危険 14が高い という問題点があった。  According to the related technology 1, since the electronic medical record system is a system mainly for medical personnel, the preservation of medical data after the medical data storage obligation period has been determined arbitrarily by the medical institution. Nevertheless, there was a problem that the danger of losing medical data14 was high.
又、 「患者が主体となって、 医学研究分野への情報提供を決定し、 これにより 医学の発展や、 医療ビジネス展開に寄与する」 という視点を欠いていた。  He also lacked the perspective that "patients would take the initiative in deciding to provide information to the medical research field, thereby contributing to the development of medicine and the development of the medical business."
さらに、 医用データを共有するユーザが、 それぞれの重要度に応じて医用デー タを個別に保存する手段が無く、 又、 保存コストを分担する手段も無かった。 一方、 関連技術 2による遠隔診断システムでは、 広域ネットワークで安全に質 の高い遠隔診断を医療ビジネスとして実現させる手段がなかった。  Furthermore, there is no means for users who share medical data to save medical data individually according to their importance, and there is no means to share the storage cost. On the other hand, in the remote diagnosis system based on Related Technology 2, there was no means to realize safe and high-quality remote diagnosis as a medical business over a wide area network.
又、 関連技術 3では、 医師と患者の両者間で医用データを共有する手段として 第 2.パスワードを提案しているが、 医用データ単位でアクセス権を管理する手段 がなく、 加えて、 患者が第 2パスワードを変更すると、 病院側は、 診断の根拠と して利用した医用データを含む全ての患者データにアクセスできない状況が出 現し、 又、 患者が意識不明の状態では誰も医用データにアクセスできない等、 現 実的、 合理的な運営が困難であった。 発明の開示  Related technology 3 proposes the second password as a means for sharing medical data between both doctors and patients.However, there is no means for managing access rights in units of medical data. If the second password is changed, the hospital will not be able to access all patient data, including the medical data used as the basis for diagnosis, and no one will be able to access medical data if the patient is unconscious. Realistic and rational operation was difficult, for example. Disclosure of the invention
本発明は、以上の点を考慮し、患者、医師、 医師以外の医療従事者(以下、 「準 医療従事者」 と呼ぶ) 、 研究者、 および医療機関等が、 インターネット等の通信 手段を通じて電子的に保存された医用データを効率的且つ安全に共有するため の、 医用データのアクセス権管理手段を備えることにより、 医師法及び医療法の 定める範囲内で、 医用データの患者への開示と医療機関による医用データの保守 を両立させ、 効果的な遠隔診断を可能にし、 患者を含めた会員の求める期間、 重 要な医用データを選別して保存することを可能にし、 さらに患者が主体となり、 医学研究分野や医療経済分野での医用データの利用を可能とする医用データ管 理システムを構築することを一の目的とする。 In consideration of the above points, the present invention provides a method in which a patient, a physician, a medical worker other than a physician (hereinafter, referred to as a “quasi-medical worker”), a researcher, a medical institution, or the like is electronically communicated through communication means such as the Internet. Provision of medical data access right management means to efficiently and safely share medical data that has been stored in a medical system, so that medical data can be disclosed to patients and provided within the scope of the Medical Law and Medical Law. Institutional maintenance of medical data is compatible, effective remote diagnosis is possible, important medical data can be sorted and stored for a period required by members including patients, and patients are the main subject. One purpose is to build a medical data management system that enables the use of medical data in the medical research and medical economic fields.
前記の及ぴ他の目的を達成するために、 本出願第 1の発明は、 患者、 医師、 医 師以外の医療従事者、 および、 医療機関が会員として登録され、 会員毎の I Dと ログイン用認、証手段を用いてログインし、 医用データを登録'保存し有効利用す るための医用データ管理システムにおいて、 個々の医用データに付随する管理 フアイノレを備え、 管理ファイルに会員のアクセス権を記録することにより、 会員 の医用データへのアクセスを可能ならしめ、 かつ、 管理ファイルに会員のァクセ ス権を追加記録することを可能ならしめる手段としてアクセス権追加用認証手 段を具備し、 このアクセス権追加用認証手段は患者会員毎に存在するように構成 されてなる医用データ管理システムである。  In order to achieve the above and other objects, the first invention of the present application is a method in which a patient, a doctor, a medical worker other than a doctor, and a medical institution are registered as members, and each member has an ID and a login A medical data management system for logging in using authentication and certification means, registering and storing medical data for effective use, has a management file attached to each medical data, and records the access rights of members in a management file As a means to enable access to the member's medical data and to enable additional recording of the member's access right in the management file, an access right adding authentication means is provided. The authorization means for adding rights is a medical data management system configured to exist for each patient member.
本発明の医用データ管理システムでは、 医師の診察等によって発生する医用 データは、 医師会員、 準医療従事者会員、 患者会員等の各種会員によって本シス テムに提供され、 提供された医用データは、 管理ファイルによって個別に管理さ れる。  In the medical data management system of the present invention, medical data generated by a doctor's consultation and the like is provided to the system by various members, such as a doctor member, a quasi-medical worker member, and a patient member. It is individually managed by the management file.
本発明における会員は、 医用データとの関係に応じて、 各種会員に分類されて 登録され、 医用データ管理システム側から, 会員毎の I Dと、 ログイン用認証手 段として例えばログイン用パスワードが付与され、 各会員は、 付与された I Dと 口グイン用パスヮードで本システムに口グインすることになる。  The members in the present invention are classified and registered as various members according to the relationship with the medical data, and the medical data management system assigns an ID for each member and, for example, a login password as a login authentication means. Each member will login to this system with the assigned ID and password for login.
医用データへの各会員のアクセス権制御を効率的に行うために、 医用データの 管理ファイルと患者会員毎に存在するアクセス権追加用認証手段が用意されて おり、 この二つにより、 従来技術で実現されなかった実用に即したアクセス権の 管理が実装される。  In order to efficiently control the access rights of each member to the medical data, a management file for the medical data and an authentication means for adding the access right existing for each patient member are prepared. Practical access right management that is not realized is implemented.
すなわち、 医用データへのアクセス権は医用データの管理ファイルに記録され、 前記管理ファイルにアクセス権を追加記録するために、 アクセス権追加用認証手 段が要求される。 よって、 管理ファイルにアクセス権が記録されている会員は該医用データへの アクセスが許可されており、 医用データへの新たなアクセス権の獲得は、 患者会 員が開示するァクセス権追加用認証手段を医師会員等が取得し、 管理ファィルへ アクセス権の追加を行うことによりなされる。 That is, the access right to the medical data is recorded in the medical data management file, and an access right adding authentication means is required to additionally record the access right in the management file. Therefore, a member whose access right is recorded in the management file is permitted to access the medical data, and the acquisition of a new access right to the medical data is based on the access right adding authentication means disclosed by the patient member. This is done by a medical member, etc., acquiring and obtaining access rights to the management file.
ここでいうログイン用認証手段、 及びアクセス権追加用認証手段とは、 パス ワードとして個人が記憶管理し、 その都度入力する情報、 磁気カードや I Cカー ドなどの記憶媒体に記録された情報、個人の指紋や網膜パターンなど個人固有生 物学的情報を利用して作成されるものなど、 レ、ずれでもよい。  The authentication means for login and the authentication means for adding access right referred to here are the information stored and managed by individuals as passwords, information entered each time, information recorded on storage media such as magnetic cards and IC cards, and personal information. For example, fingerprints and retinal patterns created using personal biologic information, such as fingerprints and retinal patterns, may be misaligned.
この結果、 従来、 紙やフィルムに依存していた医用データが電子的なデータと して蓄積され、 時間的、 空間的隔たりを越え、 共有可能となる。  As a result, medical data that previously relied on paper or film is now stored as electronic data, which can be shared across temporal and spatial boundaries.
又、 従来、 医用データの蓄積、 保管、 閲覽の主体は医師であつたが、 本発明で は医用データの蓄積、 保管、 閲覧に患者も会員として参加でき、 医用データへの 了クセス権の追加を許可する権利は患者会員に存在するため、 医用データの利用 の主体は患者会員となる。  In the past, doctors have been the subject of storing, storing, and viewing medical data, but in the present invention, patients can also participate in storing, storing, and browsing medical data as members, and the right to access medical data can be granted. Patient members have the right to allow addition, so the patient data is used by the subject of medical data.
し力、し、 医用データの管理ファイルにアクセス権を記録された会員は医用デー タへのアクセス権を保持する者となるため、 例えば、 一度診察に使用した診断根 拠となる医用データに対する医師会員のアクセス権は保証される。  Members whose access rights are recorded in the medical data management file are those who retain access to medical data.For example, doctors who use medical data once as the basis for diagnosis Member access rights are guaranteed.
尚、 医用データに対して実施可能な機能は、 会員の種類により異なる。  Note that the functions that can be performed on medical data differ depending on the type of member.
ここでいう、 医用データは、 例えば、 不定形データと、 各会員が登録したコメ ント(診断コメント、遠隔診断コメント等を含む)で構成され、不定形データは、 例えば、 患者会員の病歴、 処方、 所見、 診断、 コメント等の文字データ、 臨床検 査等の数値データ、 心電図、 X線撮影写真、 MR I、 C T等の画像データの他、 動画や音声等が挙げられ、 これらのデータ単独でもこれらのデータの組み合わせ でもよく、 XM L (extensible Markup Language)等で表現されている情報でもよ く、 この他に画像の色調、 濃淡を変更する等の加工を施して得た 2次的な医用 データも含む。 ここでいう、 医用データの管理を行うための管理ファイルとは、 医用データの 管理に関する情報を記録するものであり、 1つの医用データに対して 1つ以上存 在し、 例えば、 医用データと独立に存在しても、 医用データと統合され医用デー タの一部として存在しても、 データベースとして存在してもよレ、。 Here, the medical data is composed of, for example, irregular data and comments (including diagnostic comments, remote diagnostic comments, etc.) registered by each member. The irregular data is, for example, a patient member's medical history, prescription, etc. , Findings, diagnoses, text data such as comments, numerical data such as clinical tests, electrocardiograms, radiographs, MR I, CT, and other image data, as well as videos and voices. The data may be a combination of these data, or may be information expressed in extensible markup language (XML), etc. In addition, secondary medical data obtained by performing processing such as changing the color tone and shading of the image Including. Here, the management file for managing medical data records information related to the management of medical data, and one or more medical data exist, for example, independent of medical data. , It can be integrated with medical data, exist as part of medical data, or exist as a database.
尚、ここでいう医師とは、法に基づき診断を行う免許を有する者のことであり、 歯科医師等もこれに準ずる。  The term “physician” as used herein refers to a person who has a license to make a diagnosis based on the law, and dentists and the like follow this.
管理ファイルに含まれる情報には、 例えば、 医用データの保管場所、 アクセス 権を有している会員 I D、 アクセス権を取得した日時、 アクセス権を追加した会 員 I Dおよびアクセス権追加に至つた経緯等のァクセス権の履歴に関する情報 と、 アクセス権追加の制限、 医用データを不要とする宣言、 医用データの研究目 的公開の範囲、 医用データのデータ量等がある。  The information contained in the management file includes, for example, the storage location of medical data, the ID of the member who has access, the date and time the access was obtained, the member ID to which the access was added, and the circumstances that led to the addition of the access. There is information on the history of access rights, such as access rights, restrictions on additional access rights, declarations that medical data is not required, scope of medical data disclosure for research purposes, and the amount of medical data.
管理ファイルにおける各会員のアクセス権の記録とは、 例えば、 データ管理 ファイルのアクセス権記録領域に会員 I Dが記録されることで実現され、 口グイ ンした会員から医用データに対するアクセス要求がなされた場合、 医用データ管 理システムはアクセス要求のあった医用データの管理ファイルを検索し、 ァクセ ス権記録領域に I Dが記録されている会員には、該医用データへのアクセスを許 可する。  The recording of the access right of each member in the management file is realized, for example, by recording the member ID in the access right recording area of the data management file, and when an access request to the medical data is made by the member who has logged in Then, the medical data management system searches the management file of the medical data requested to be accessed, and permits the member whose ID is recorded in the access right recording area to access the medical data.
尚、 会員のプライバシー保護のため、 医用データ管理システムに記録される会 員情報、 医用データ、 医用データ管理ファイル等の情報は、 喑号化されて記録さ れるようにしてもよい。  In order to protect the privacy of members, information such as member information, medical data, and medical data management file recorded in the medical data management system may be encoded and recorded.
本出願第 2の発明は、既に医用データの管理ファイルにアクセス権が記録され ている会員が、 その管理ファィルに他の会員のアクセス権を追加記録する機能に より、該医用データへの他の会員のアクセスを可能ならしめる事を特徴とするも のである。  In the second invention of the present application, a member whose access right has already been recorded in a management file of medical data has a function of additionally recording the access right of another member in the management file. It is characterized by making members accessible.
例えば、 一人の医師会員が、 既に患者会員の医用データへのアクセス権を有し ている状態において、 医用データ管理システムに口グインした場合に利用できる 機能として、 該医用データを選択する機能、 該会員のアクセス権が該医用データ の管理ファイルのアクセス権記録領域に存在することを確認する機能、 管理フ了 ィルに新たなアクセス権としての I Dを追加する機能を実装することにより、 該 医用データに他の会員のアクセス権を追加することが可能となる。 For example, it can be used when one doctor member already has access to medical data of a patient member and logs in to the medical data management system. The function to select the medical data, the function to confirm that the access right of the member exists in the access right recording area of the management file of the medical data, the ID as a new access right in the management end file By implementing the function of adding a member, the access right of another member can be added to the medical data.
これにより、例えば、遠隔診断において、遠隔診断の被依頼者に特定の医用デー タへのみアクセス権を与えることが可能となり、広域ネットワークで安全に遠隔 診断を展開することが可能となる。  As a result, for example, in remote diagnosis, it is possible to give the requestee of remote diagnosis access only to specific medical data, and it is possible to safely develop remote diagnosis over a wide area network.
もし、 不正に医用データのアクセス権を得た会員が存在したならば、 患者会員 は医用データの管理ファイルに記録されたアクセス権を検索することで不正ァ クセス権獲得者を捕捉可能であり、 不正アクセスが発覚した場合は、 患者会員の 要望により、 システム管理者の権限で、 該医用データの管理ファイルから不正ァ クセスを行っている会員のアクセス権を削除すようにしてもよい。  If there is a member who has illegally gained access to medical data, the patient member can capture the unauthorized access right holder by searching the access right recorded in the medical data management file, When unauthorized access is discovered, the access right of the member who is performing the unauthorized access may be deleted from the medical data management file with the system administrator's authority at the request of the patient member.
本出願第 3の発明は、 患者会員に対しては患者会員自身で自己の医用データを 登録することを可能とする機能を有し、 且つ、 他の会員が登録したものを含め、 患者会員の全ての医用データの管理フアイルには患者会員自身のアクセス権が 自動的に記録される機能を有するように構成されることにより、 常に患者会員は 自己の医用データにアクセスできるのみならず、 医用データを他人へ開示するこ とが可能な構成にされてなることを特徴とするものである。  The third invention of the present application has a function of enabling a patient member to register his / her own medical data by himself / herself. All medical data management files are configured to have the function of automatically recording the access rights of the patient members themselves, so that not only the patient members can always access their own medical data, but also the medical data Is configured to be able to be disclosed to others.
医用データは、 全て患者会員の存在の元に作成されるため、 例えば、 医用デー タ発生時に患者会員の I Dが自動的に管理ファイルのアクセス権記録領域に記 録される機能を実装することにより、 常に患者会員は自己の医用データへのァク セス権が保証される。  Since all medical data is created based on the existence of patient members, for example, by implementing a function that automatically records the patient member ID in the access right recording area of the management file when medical data is generated However, patient members are always guaranteed access to their medical data.
本出願第 4の発明は、 研究者会員を参加させ、 患者会員が承諾した医用データ 範囲を医用データの管理ファイルに記録する機能を有することにより、研究者会 員に対して許可された医用データを開放できるように構成されてなることを特 徴とするものである。 例えば、 医用データ管理システムにログインした患者会員に対して、 本システ ムは、 患者会員が公開しても良い医用データを選択する機能、 性別や年齢等の医 用データに付随する患者会員の個人情報の開示範囲を選択する機能を備え、 さら に選択の結果を管理ファイルに記録する機能を装備すると共に、研究者会員が条 件検索により、意図する医用データを抽出する機能を装備することにより実現可 能であり、 この時、 患者会員は自己の医用データの研究利用に対価を要求しても よい。 The fourth invention of the present application has the function of enrolling a researcher member and recording the medical data range approved by the patient member in a medical data management file, thereby obtaining medical data permitted to the researcher member. It is characterized by being configured to be able to open. For example, for a patient member who has logged in to the medical data management system, this system has the function of selecting medical data that the patient member may disclose, and the individual of the patient member accompanying the medical data such as gender and age. It has a function to select the range of information disclosure, and a function to record the results of the selection in a management file, and a function to extract intended medical data by condition search by researcher members. This is feasible, at which time the patient member may request a fee for research use of his or her medical data.
これにより、 患者が主体となって、 医学研究分野への情報提供を決定し、 これ により医学の発展や、 医療ビジネス展開に寄与することが可能となる。  In this way, the patient will take the initiative in deciding to provide information to the medical research field, thereby contributing to the development of medicine and the development of the medical business.
医用データは、 患者会員や複数の医師会員、 準医療従事者会員の登録したデー タで構成されるので、 医用データの公開の可否については、 これら登録者の公開 の可否に対する意思を反映させる機能を装備してもよい。  Medical data consists of data registered by patient members, multiple physician members, and quasi-healthcare professional members.Therefore, the availability of medical data reflects the registrant's willingness to release. May be equipped.
本出願第 5の発明は、 管理ファイルにアクセス権の記録された各会員において、 医用データを必要とする順に該医用データの保管責任者が決定され、 該保管責任 者がその任を放棄した場合、 次の候補者に保管責任者の任が移動し、 最終的に全 ての会員が保管責任を放棄した場合には、該医用データを削除する機能が設けら れてなることを特徴とするものである。  In the fifth invention of the present application, in each member whose access right is recorded in the management file, the storage manager of the medical data is determined in the order in which the medical data is required, and the storage manager abandons the role. In the event that the custody of the custody is transferred to the next candidate and ultimately all members abandon their custody, a function is provided to delete the medical data. Things.
例えば、 医用データの管理ファイルに記録されているアクセス権保持者を会員 種によりソートし保管責任者の優先順位を決定するステップ、 先頭のアクセス権 保持者を保管責任者として決定し管理ファイルに記録するステップ、 決定された 保管責任者に通知するステップ、 通知を受けた保管責任者が保管責任者を継続す るか放棄するかを医用データ管理システムに登録するステップ、保管責任者が保 管責任者であることを放棄した場合、先に示した優先順位に従い次の保管責任者 を決定するステップ、 の繰り返し機能と、 保管責任者が存在するか否かを監視す る機能を医用データ管理システムに実装し、 保管責任者がいなくなつた場合、 該 医用データを削除する機能を装備することにより実現される。 この結果、 患者会員のみならず、 アクセス権を持つ会員の誰か一人が必要性を 認める限り、 医用データを医用データ管理システム上に保管可能であり、 医療機 関が医用データの破棄を一方的に決定する状況を避けることができる。 For example, the step of sorting the access right holders recorded in the medical data management file by membership type and determining the priority of the storage manager, the first access right holder is determined as the storage manager and recorded in the management file Steps to notify the designated storage officer, Register the notified storage officer in the medical data management system whether to continue or abandon the storage officer, and the storage officer If abandoned as a custodian, the medical data management system has a function to repeat the step of determining the next custodian in accordance with the priority shown above, and a function to monitor whether a custodian exists. It is implemented by providing a function to delete the medical data when the storage manager is gone. As a result, medical data can be stored on the medical data management system, as long as not only the patient members but also one of the members with access rights recognizes the need, and the medical institution unilaterally discards the medical data. The decision situation can be avoided.
又、 全員が医用データの保管責任を放棄した場合、 該医用データを必要とする 会員が存在しないことになるので、 医用データは削除され、 医用データ管理シス テム上に不要な医用データが蓄積されることが無く、 医用データの重要度に応じ た保管がなされる。  Also, if all members abandon their responsibility for storing medical data, there will be no members who need the medical data, so the medical data will be deleted and unnecessary medical data will be stored in the medical data management system. The medical data is stored according to its importance.
この時、 会員が保管責任者になることを自動的に回避する手段として、 事前に 「原則として全医用データに対する保管責任を自動的に放棄する」 ように設定し ておけば、 手動によるデータ放棄の処理を避けることができる。  At this time, if you set in advance to automatically abandon the responsibility for storage of all medical data in advance as a means to automatically prevent members from becoming the storage manager, manual data abandonment Can be avoided.
上記の場合、 ある重要な医用データに対しては重要フラグを設定することで、 該医用データに限り、 自動的に保管責任の放棄を行わず、 保管責任会員になる機 能が付加されていれば、 誤って重要な医用データを失う危険性が回避できる。 本出願第 6の発明は、 自動的に各医用データの保管責任者を検索し、 会員毎の 医用データ保管量を集計する機能を有し、集計結果に対して課金することを可能 にする機能が設けられてなることを特徴とするものである。  In the above case, by setting an important flag for certain important medical data, a function to become a storage responsible member is added only for the medical data without automatically giving up storage responsibility. The risk of losing important medical data by mistake can be avoided. The sixth invention of the present application has a function of automatically searching for a person in charge of storage of medical data, totaling the amount of medical data stored for each member, and enabling charging for the total result. Is provided.
例えば、 医用データ管理システムの運営管理者が定める一定の期間毎に、 本シ ステムは全ての医用データの管理フ了ィルから保管責任者を検索し、 管理ファィ ルに記録されている該医用データのデータ量を集計し、 会員毎の保管責任医用 データの合計量を計算する機能を装備することにより課金料を決定することが 可能となる。 この場合、 集計時の保管責任会員に課金するだけでなく、 この医用 データにアクセス権を有する他の会員に対する課金を併用してもよい。  For example, at regular intervals determined by the administrator of the medical data management system, the system searches for the storage manager from all the medical data management files and retrieves the medical data recorded in the management file. It is possible to determine the billing fee by equipping a function to aggregate the data amount of data and calculate the total amount of medical data for each member. In this case, in addition to charging the member responsible for storage at the time of counting, charging for other members who have access to this medical data may be used together.
本出願第 7の発明は、 患者会員を過去に診察した医師会員が、 該患者会員の医 用データに無制限にアクセスすることを防ぐために、 患者会員はアクセス権追加 用認証手段を変更できるように構成されてなることを特徴とするものである。 患者会員は医用データ管理システムに口グインすることにより、患者会員とし て本システムに認識される。 例えば、 アクセス権追加用認証手段としてアクセス 権追加用パスヮードを利用していた場合は、 本システムが患者会員にアクセス権 追加用パスヮードを要求し、使用していたアクセス権追加用パスヮードを確認し た後、 新しいアクセス権追加用パスワードに変更することが可能である。 The seventh invention of the present application is intended to prevent a doctor member who has examined a patient member in the past from accessing the medical data of the patient member without restriction, so that the patient member can change the access right adding authentication means. It is characterized by being constituted. Patient members become patient members by logging into the medical data management system. Is recognized by this system. For example, when the access right addition password was used as the access right addition authentication means, the system requested the patient member to request the access right addition password and confirmed the used access right addition password. Later, the password can be changed to a new access right addition password.
上記のように、 アクセス権追加用パスワードは、 患者自身が自由に変更できる ものであり、 アクセス権追加用パスヮードが変更された後は古いアクセス権追加 用パスワードではアクセス権を追加することができなくなるが、既に管理フアイ ルにアクセス権が記録されている会員の、該医用データへのアクセスは影響を受 けない。  As described above, the access right addition password can be freely changed by the patient himself, and after the access right addition password is changed, the old access right addition password can no longer add access rights. However, access to the medical data of members whose access rights have already been recorded in the management file is not affected.
これにより、 医師会員が診断の根拠としていた医用データに、 アクセスできな い状況が出現することなく、 患者会員のプライバシーにも配慮した医用データ管 理システムが構築される。  In this way, a medical data management system that takes into account the privacy of patient members will be constructed without the emergence of a situation in which doctor members cannot access the medical data used as the basis for diagnosis.
本出願第 8の発明は、 患者会員が特定する自己の医用データに対して、 他の会 員が該医用データにァクセス権の追加行為を行う場合、他の会員に対しては他の 会員の行為を患者会員に通知する旨を警告し、 他の会員の該行為後には、 他の会 員の該行為を記録し、 患者会員に通知する警告設定機能が設けられてなることを 特徴とするものである。  The invention of the eighth application of the present application is intended for use in the case where another member adds an access right to the medical data specified by the patient member when the other member performs an access right to the medical data. A warning setting function is provided to warn the patient member of the action and to record the action of the other member after the action of the other member and to notify the patient member of the action. Things.
例えば、 患者会員が医用データ管理システムにログイン後、 保護対象となる医 用データを選択するステップ、選択された医用データの管理ファイルに警告の設 定がなされたことを記録するステップ、他会員のアクセス権追加が行われるに当 たって、 該医用データ管理ファイルを検索するステップ、 医用データ管理フアイ ルに警告の設定がなされていた場合、 アクセス権追加の行為者に警告を発するス テツプ、 前記警告に対して、 アクセス権追加の行為者が、 処理を決定するステツ プ、 前記処理がアクセス権の追加実行であった場合、 アクセス権の追加処理を行 い、 行為者を管理ファイルに記録し、 アクセス権が追加された会員 (例えば、 遠 隔診断時の被紹介者) とその行為を行った会員 (例えば、 遠隔診断時の紹介者) を患者会員に通知するステップにより実現される。 For example, after a patient member logs in to the medical data management system, the step of selecting medical data to be protected, the step of recording that a warning has been set in the management file of the selected medical data, the step of A step of searching the medical data management file when the access right is added; a step of issuing a warning to an actor who adds the access right if a warning is set in the medical data management file; In response to this, the actor who adds the access right determines the process.If the process is the execution of the addition of the access right, performs the process of adding the access right, records the actor in the management file, Members with additional access rights (eg, referral at remote diagnosis) and members who performed the action (eg, referral at remote diagnosis) Is notified to the patient member.
これにより、 医師会員或いは準医療従事者会員における、 患者会員の医用デー タ運用に関するモラルを高め、 患者会員のプライバシー保護に寄与する。  This will enhance the morale of medical members and quasi-medical workers regarding the operation of medical data by patient members and contribute to the protection of patient members' privacy.
本出願第 9の発明は、 患者会員が特定する自己の医用データに対して、 他の会 員が該医用データにアクセス権の追加行為を 1回だけ許可する、使い捨て認証手 段を登録する機能を有し、 医用データにアクセス権の追加行為を行なう他の会員 に対して、使い捨て認、証手段の入力を要求できるように構成されてなることを特 徴とするものである。 : 例えば、 患者会員が医用データ管理システムにログイン後、 対象医用データを 選択するステップ、 選択された医用データの管理ファイルにアクセス権を追加す る時に使い捨て認証手段の要求が設定されたことを記録するステップ、他会員の アクセス権追加が行われるに当たって、該医用データの管理ファイルを検索する ステップ、 管理ファイルに使い捨て認証手段の入力要求が設定されていた場合、 アクセス権追加の行為者に使い捨て認証手段を要求するステップ、前記要求に対 して、 アクセス権追加の行為者が、 使い捨て認証手段を入力するステップ、 入力 された使 、捨て認証手段が有効であるかを確認するステップ、使い捨て認証手段 が有効であった場合、 アクセス権の追加処理を行い、.行為者を管理ファイルに記 録するステップ、使用された使い捨て認証手段を以後無効にするステップにより 実現される。  The ninth invention of the present application has a function of registering a disposable authentication means that allows another member to add an access right to the medical data only once for the patient's own medical data specified by the patient member. It is characterized in that it is configured to be able to request disposable authorization and input of certificate means to other members who perform additional acts of access right to medical data. For example, after the patient member logs in to the medical data management system, the step of selecting the target medical data, records that the request for the disposable authentication means was set when adding the access right to the management file of the selected medical data The step of searching for a management file of the medical data when the access right of another member is added.If the input request of the disposable authentication means is set in the management file, the disposable authentication is performed by the actor who added the access right. Requesting the means, responding to the request, the act of adding an access right inputs the disposable authentication means, confirming whether the input use, the disposable authentication means is valid, disposable authentication means If is valid, perform additional access rights processing and record the actor in the management file. Step is realized by the step of disabling subsequent disposable authentication means used.
これにより、 患者主体の医用データの開示機能が実現される。  This implements a patient-centered medical data disclosure function.
例えば、 患者会員の使い捨て認証手段の作成おょぴ取得については、 患者会員 ίΚ 携帯電話やコンピュータ端末、 その他のインターネットに接続できる機器で 医用データ管理システムにログインした後に、使い捨て認証手段の作成要求を入 力することにより作成され、 その未使用時の有効期限は患者会員が任意に決定で きるものとする。 ·  For example, to create a disposable authentication means for a patient member, obtain a request to create a disposable authentication means after logging in to the medical data management system with a patient member ίΚ mobile phone, computer terminal, or other device that can connect to the Internet. It is created by input, and the expiration date when not in use shall be arbitrarily determined by the patient member. ·
患者会員が作成した使い捨て認証手段を使用者へ渡す手段は、 例えば、 口頭で 伝える、 携帯電話の画面に表示させて提供する、 印刷してチケットにする、 など が可能である。 Means for passing the disposable authentication means created by the patient member to the user are, for example, verbal It can be communicated, displayed on the screen of a mobile phone, provided, printed, and used as a ticket.
使い捨て認証手段が記載されたチケットを紛失した場合のために、 患者会員は 端末もしくは携帯電話で本システムにログインし、使い捨て認証手段を無効にす る機能を備えておくことが望ましい。  In the event that the ticket with the disposable authentication means is lost, it is desirable for the patient member to have a function to disable the disposable authentication means by logging in to the system using a terminal or mobile phone.
尚、 ここでいう使い捨て認証手段とは、 パスワードとして個人が記憶管理し、 その都度入力する情報、磁気カードや I Cカードなどの記憶媒体に記録された情 報、個人の指紋や網膜パターンなど個人固有生物学的情報を利用して作成される ものなど、 いずれでもよい。  The disposable authentication means referred to here is a password that is stored and managed by the individual as a password, information entered each time, information recorded on a storage medium such as a magnetic card or IC card, and personal information such as an individual's fingerprint or retinal pattern. Any of those created using biological information may be used.
本出願第 1 0の発明は、会員力 遠隔診断 ·診療の依頼者となることを想定し、 被依頼者となる医師会員は、 専門領域等の遠隔診断 ·診療に関わる情報を掲載す る機能が設けられてなることを特徴とするものである。  The invention of the 10th application of the present application is based on the assumption that the member will be a client for remote diagnosis and medical treatment, and the doctor member who is the requestee will have the function of posting information related to remote diagnosis and medical treatment in specialized fields. Is provided.
例えば、 遠隔診断の被依頼者になる意思のある医師会員は、 医用データ管理シ ステムにログイン後、 自分の診療科、 経歴、 資格、 専門分野、 勤務地域や遠隔診 断 ·診療を提供する場合の条件などを予め医用データ管理システムに登録する事 が可能となっており、 登録された情報を、 依頼者になる会員が条件検索でき、 閲 覧できる機能を備えることにより実現される。  For example, a physician member who intends to be a remote diagnosis requester logs in to the medical data management system and provides his / her medical department, career, qualification, specialty, work area and remote diagnosis / medical care. It is possible to pre-register the conditions of the medical data management system in advance, and it is realized by providing a function that allows the requesting member to perform a condition search and browse the registered information.
よって、 本発明では、 医用データ管理システムに登録され、 遠隔診断を受託す ることを表明している医師会員の中から、 専門分野等の情報を検索し入手可能で あるため、 医局内や、 知り合いの医師、 あるいは一糸且織に登録された医師等に限 定されがちであった従来の遠隔診断に比べ、広い範囲から質の高い遠隔診断を提 供できる医師を選択できる可能が高い。  Therefore, according to the present invention, information such as specialty fields can be searched and obtained from doctor members who have registered in the medical data management system and indicate that remote diagnosis is to be entrusted. It is more likely that a doctor who can provide high-quality remote diagnosis from a wide range can be selected, compared to the conventional remote diagnosis, which is often limited to doctors who are acquainted or registered with Ichi Itori.
本出願第 1 1の発明は、 会員が、 遠隔診断 '診療の依頼者となり、 被依頼者で ある医師会員により遠隔診断■診療が実施された後、 被依頼者である医師会員の 提供した診断等の情報に対する評価を、 依頼者である会員が登録する機能を有す ると共に、 評価を受けた被依頼者も、 依頼者が下した評価に対する評価を登録で きる構成にされてなることを特徴とするものである。 . In the invention of the eleventh application of the present application, the member becomes a requester of the remote diagnosis '' The requesting member has the function of registering the evaluation of information such as the request, and the requestee who has received the evaluation can register the evaluation of the evaluation made by the client. It is characterized by having such a configuration. .
遠隔診断が行われた場合の依頼者と被依頼者の情報の動きを簡明に記すと、例 えば、 被依頼者が依頼者宛に診断結果を登録するステップ 1、 依頼者が診断結果 を見て診断結果に対する評価を被依頼者宛に登録するステップ 2、 被依頼者が、 ステップ 2の評価を見て、 それに対する評価を依頼者宛に登録するステップ 3が 行われることになる。  When the remote diagnosis is performed, the information movements of the requester and the requestee are described briefly.For example, the requester registers the diagnosis result to the requester, step 1; Step 2 in which the evaluation of the diagnosis result is registered to the client and Step 3 in which the client sees the evaluation in Step 2 and registers the evaluation to the client.
例えば、 ステップ 2では、 診断内容の適切さ、 説明の親切さ等に関する依頼者 の文章としてのコメントと階級値としての満足度が登録され、 同様にステップ 3 では下されたステップ 2の評価に対する被依頼者の文章としてのコメントと階 級値としての満足度が登録される。  For example, in step 2, a comment as a requester's text and a degree of satisfaction as a class value regarding the appropriateness of the diagnosis content, kindness of the explanation, etc. are registered, and similarly, in step 3, the evaluation of the evaluation of step 2 given in step 3 is received. The comment as the text of the client and the degree of satisfaction as the class value are registered.
遠隔診断に係わるこの二者間のやり取りのうち、 ステップ 2と 3でお互いから の評価として受け取った前記満足度の登録は、 例えば、 評価を受けた会員が開示 を了解するか否かの決定を行うステップを経て、 了解すれば、 相手に与えた満足 度の履歴として、 遠隔診断の依頼者、 被依頼者の別に医用データ管理システム上 で公開される機能により他の会員に公表される。  Of the two parties involved in the telediagnosis, the registration of the satisfaction received as an evaluation from each other in steps 2 and 3 is, for example, a decision on whether the evaluated member understands the disclosure or not. If you understand through the steps to be performed, the history of satisfaction given to the other party will be released to other members by the function released on the medical data management system separately for the requester and the requestee of the remote diagnosis.
相手に与えた満足度の履歴の公表では、全履歴の中で公開している評価の割合 も併せて公開する機能を具備する事が望ましい。  When publishing the history of the degree of satisfaction given to the other party, it is desirable to have a function that also publishes the percentage of the evaluation that is made public among all the histories.
この遠隔診断に対する評価と、 その評価に対する評価を登録できる機能により、 遠隔診断の質の向上と、 ネットワーク医療におけるモラルの維持が図られる。 本発明の上記以外の特徴及びその目的とするところは、 添付図面を参照しつつ 本明細書の記載を読むことにより明らかとなるであろう。 図面の簡単な説明  The evaluation of this remote diagnosis and the function of registering the evaluation of the evaluation improve the quality of the remote diagnosis and maintain the morals in network medical care. Other features and objects of the present invention will become apparent from reading the description of the present specification with reference to the accompanying drawings. BRIEF DESCRIPTION OF THE FIGURES
図 1は本発明の医用データ管理システムの構成を示す説明図、  FIG. 1 is an explanatory diagram showing the configuration of the medical data management system of the present invention,
図 2は会員情報フ了ィルの例、  Figure 2 shows an example of a membership information file.
図 3は医用データ管理ファイルの説明図、 図 4は会員登録の説明図、 Figure 3 is an illustration of the medical data management file, Figure 4 is an illustration of membership registration,
図 5はホームページ画面の画面例、 Figure 5 shows an example of a home page screen.
図 6は口グイン後初期画面の画面例、 Figure 6 shows an example of the initial screen after the mouth
図 7は医師会員用グローバルメニューの画面例、 Figure 7 shows a screen example of the global menu for doctor members.
図 8は患者会員用グローバルメニューの画面例、 Figure 8 shows an example of a global menu for patient members.
図 9は準医療従事者用グローバルメニューの画面例、 図 1 0は医療機関会員用グ口ーバノレメ二ユーの画面例、 図 1 1は研究者会員用グローバルメュユーの画面例、 図 1 2は患者検索画面の画面例、 Fig. 9 is an example of the global menu for associate healthcare professionals, Fig. 10 is an example of a screen for medical institution members, Fig. 11 is an example of a global menu for researchers, and Fig. 12 is an example of a global menu for researchers. Screen example of patient search screen,
図 1 3はアクセス可能医用データ一覧画面の画面例、 図 1 4は保管責任医用データ一覧画面の画面例、 Fig. 13 shows an example screen of the accessible medical data list screen. Fig. 14 shows an example screen of the storage responsible medical data list screen.
図 1 5は診察患者一覧画面の画面例、 Fig. 15 shows a screen example of the patient list screen,
図 1 6は診察対象患者医用データ一覧画面の画面例、 図 1 7は診察キー入力画面の画面例、 Fig. 16 shows a screen example of the medical data list screen for the patient to be examined. Fig. 17 shows a screen example of the examination key input screen.
図 1 8は医用データ詳細閲覧画面 (医師用) の画面例、 図 1 9は医用データ詳細閲覧画面 (患者用) の画面例、 図 2 0は医用データのアクセス権保持者一覧画面の画面例、 図 2 1は医用データアクセス権追加制限設定画面の画面例、 図 2 2は遠隔診断依頼可能医師検索画面の画面例、 図 2 3は遠隔診断依頼可能医師一覧画面の画面例、 図 2 4は遠隔診断依頼医師決定画面の画面例、 Fig. 18 shows an example of the medical data detail browsing screen (for doctors), Fig. 19 shows an example of the medical data detail browsing screen (for patients), and Fig. 20 shows a screen example of the medical data access right holder list screen. Figure 21 shows a screen example of a medical data access right addition restriction setting screen, Figure 22 shows a screen example of a remote diagnosis requestable doctor search screen screen, Figure 23 shows a screen example of a remote diagnosis requestable doctor list screen, and Figure 24 Is a screen example of the remote diagnosis request doctor decision screen,
図 2 5は逆評価コメント閲覧画面の画面例、 Figure 25 shows a screen example of the reverse evaluation comment viewing screen.
図 2 6は遠隔診断依頼一覧画面の画面例、 Figure 26 shows a screen example of the remote diagnosis request list screen.
図 2 7は遠隔診断評価入力画面の画面例、 Figure 27 shows a screen example of the remote diagnosis evaluation input screen.
図 2 8は医用データ検索画面の画面例、 Figure 28 shows an example of a medical data search screen.
図 2 9はワンタイムパスワード作成の説明図、 図 30は診察時アクセス権追加制限処理の説明図、 Figure 29 is an illustration of one-time password creation, Figure 30 is an explanatory diagram of the access right addition restriction process at the time of consultation
図 3 1は遠隔診断時アクセス権追加制限処理の説明図、  Figure 31 is an explanatory diagram of the access right addition restriction process at the time of remote diagnosis,
図 32は医用データ保管責任会員決定プロセスの概念の説明図、  Figure 32 is an explanatory diagram of the concept of the medical data storage responsible member determination process,
図 3 3は保管責任会員候補の決定処理の説明図、  Fig. 3 3 is an explanatory diagram of the determination process of the custody responsible member candidate,
図 34は医用データの保管責任会員決定と医用データ削除プロセスの説明図、 図 3 5は各会員における医用データ利用に関する機能制限の概要図である。 上記図面に使用されている符号は以下のとおりである。  FIG. 34 is an explanatory diagram of the process of determining the member responsible for storage of medical data and deleting the medical data, and FIG. 35 is a schematic diagram of functional restrictions on the use of medical data by each member. The reference numerals used in the above drawings are as follows.
1 - 1, 1— 2、 1 - 3 データ管理サーバ  1-1, 1-2, 1-3 Data management server
1一 l a, 1 - 2 a , 1一 3 a, 1— 4 a, 1 - 4 b, 1 - 5 b ハードディ スク  1 l a, 1-2 a, 1 3 a, 1-4 a, 1-4 b, 1-5 b Hard disk
1-4 ブリッジ'データサーバ  1-4 Bridge 'data server
1 - 5 ブリッジ 'キヤッシュサーバ  1-5 bridge 'cache server
1 -6 ルート認証局  1 -6 Root Certificate Authority
1一 6 a、 1 -6 b ミラー認証局  1-6a, 1-6b Mirror Certificate Authority
1 - 7 インターネット  1-7 Internet
1 -8, 1 - 9 院内ネットワーク  1 -8, 1-9 hospital network
1— 10, 1— 1 1, 1 - 1 2, 1 - 13, 1一 14 データ取込参照端末 1- 1 5 大規模医療機関  1— 10, 1— 1 1, 1-1 2, 1-13, 1 1 14 Data acquisition reference terminal 1-15 Large-scale medical institution
1 - 1 6 中規模医療機関  1-1 6 Medium-sized medical institutions
1 - 1 7 小規模医療機関  1-1 7 Small medical institutions
1 - 1 8 住宅  1-1 8 Residential
1- 1 9 研究施設  1- 1 9 Research facility
2- 1, 2-2 会員情報ファイル  2- 1, 2-2 Member information file
2- 1 a 保管責任自動放棄フラグ  2- 1a Automatic storage liability flag
2- 1 b 汎用使い捨て認証手段 (汎用ワンタイムパスヮード)  2- 1 b General-purpose disposable authentication means (general-purpose one-time password)
2- 2 a 保管責任自動放棄フラグ 3 医用データ管理ファイル 2- 2 a Automatic storage waiver flag 3 Medical data management file
3- 1 基本部 3- 1 Basic part
3- 1 a 特異的使い捨て認証手段 (特異的ワンタイムパスヮード) 3-2 アクセス権記録領域  3- 1 a Specific disposable authentication means (specific one-time passcode) 3-2 Access right recording area
3— 2 a 重要フラグ 3—2a important flag
3— 2 b 不要フラグ '  3— 2 b Unnecessary flag ''
3- 3 基本部のデータ例  3- 3 Basic part data example
3-4 アクセス権記録領域のデータ例  3-4 Data example of access right recording area
5— 1 ホームページ画面  5-1 homepage screen
5- 2 オンライン会員登録メニュー 5- 2 Online Membership Registration Menu
6 口グイン後初期画面  Initial screen after 6 mouths
6- 1 口グインパスヮード変更ボタン  6- 1 change password mode button
6- 2 会員基本情報ボタン 6- 2 Basic member information button
6- 3 口グイン履歴ボタン  6- 3 mouth history button
6-4 アクセス可能データボタン 6-4 Accessible data button
6- 5 保管責任情報ポタン  6- 5 Storage Responsibility Information Button
6- 6 お知らせ欄  6- 6 Notice column
6— 7、 2 1 - 3 クローズボタン  6—7, 2 1–3 Close button
7 医師会員用グローバルメニュー 7 Global menu for physician members
7- 1, 9 - 1, 1 0- 3 受診患者ボタン 7- 1, 9-1, 1 0- 3 Patient button
7- 2, 9- 2, 1 0-4 入院患者ボタン  7- 2, 9- 2, 1 0-4 Inpatient button
7- 3 新規診察患者ポタン 7- 3 New consultation patient button
7-4 診察終了ボタン  7-4 Examination end button
7- 5, 9— 3, 1 0- 5 患者検索ボタン 7- 5, 9— 3, 1 0- 5 Patient search button
7-6, .8 -4, 9-4 新規データ登録ボタン 7-6, .8 -4, 9-4 New data registration button
7- 7, 9-5 医師検索ポタン 7- 8, 10-6 遠隔診断ボタン 7- 7, 9-5 Doctor Search Button 7- 8, 10-6 Remote diagnosis button
8 患者会員用グ口一パルメニュー 8 One-pal menu for patient members
8- 1 診察キー変更ボタン  8- 1 Examination key change button
8-2 ワンタイムパスヮード作成ボタン 8-3 ワンタイムパスヮード失効ボタン 8-2 One-time pass creation button 8-3 One-time pass expiration button
8-5 医師検索ボタン 8-5 Doctor search button
9 準医療従事者会員用グローバルメニュー 10 医療機関会員用グ口一パルメニュー9 Global menu for associate healthcare professional members 10 Group menu for medical institution members
10- 1 受診患者受付ポタン 10- 1 Consultation Patient Reception Button
10-2 入院患者受付ボタン 10-2 Inpatient reception button
1 1 研究者会員用グローバルメニュー 1 1 Global Menu for Researchers
1 1- 1 医用データ検索ボタン 1 1- 1 Medical Data Search Button
12 患者検索条件入力画面 12 Patient search condition input screen
12- 1 患者検索条件入力欄  12- 1 Patient search condition input field
13 アクセス可能医用データ一覧画面13 Accessible medical data list screen
13- 1 「医用データを開く」 ボタン 14 保管責任医用データ一覧画面 13- 1 "Open Medical Data" Button 14 Storage Medical Data List Screen
14- 1 重要'不要入力欄  14- 1 important 'unnecessary input field'
1 5 診察患者一覧 (外来) 画面  1 5 Examination patient list (outpatient) screen
16 診察対象患者データ一覧画面 16 Patient data list screen for consultation
16-1 アクセス者'モード欄  16-1 Accessor 'mode field
16-2 アクセス権攔  16-2 Access Right 攔
16-3 診察時ァクセス権追加制限欄 16-3 Additional right to access at consultation
16-4 遠隔診断時ァクセス権追加制限欄 16-5 「医用データを開く」 ボタン 16-4 Restriction column on access right for remote diagnosis 16-5 "Open medical data" button
17 患者会員 I D■診察キー要求ウインドウ 18 医用データ詳細閲覧画面 (医師用) 17 Patient Member ID ■ Consultation Key Request Window 18 Medical data details browsing screen (for doctors)
18-1 アクセス者'モード欄 18-1 Accessor 'mode field
18-2 紹介ボックス 18-2 Introduction Box
18-3 返書ボックス 18-3 return box
18-4 保存ボタン 18-4 Save button
18— 5 診断追加ポタン 18— 5 Additional button for diagnosis
18-6 診断ポックス 18-6 diagnostic pox
18-7 コメント追加ポタン 18-7 Add Comment Button
18-8 コメントボックス 18-8 Comment Box
18— 9 クローズボックス 18-9 closed box
18— 10 アクセス者欄 18— 10 Accessor column
18-1 1 表示データ欄 18-1 1 Display data column
18-12 医用データコピー '加工ボタン 18-12 Medical Data Copy 'Processing Button
18-13 不定形データボックス 18-13 Custom Data Box
18-14 診察時ァクセス権追加制限; ' 18-14 Additional restrictions on access rights at consultation;
18-15 遠隔診断時ァクセス権追加制限ボックス 18— 16 医用データ種欄 18-15 Remote access additional access restriction box 18—16 Medical data type field
18-17 遠隔診断依頼ボタン 18-17 Remote diagnosis request button
18— 18 評価ポタン 18— 18 Evaluation Button
18- 19 逆評価ポタン 18-19 Reverse Evaluation Button
18—20 アクセス権確認ボタン 18-20 access right confirmation button
18-21 重要 ·不要登録ボタン 18-21 Important · Unnecessary registration button
18-22 保管条件設定欄 18-22 Storage condition setting column
18-23 重要フラグ印 18-23 Important flag mark
18-24 不要フラグ印 18-24 unnecessary flag mark
19 医用データ詳細閲覧画面 (患者用) 19-1 アクセス者 'モード欄 19 Detailed view of medical data screen (for patients) 19-1 Accessor 'mode field
1 9-2 保存ボタン  1 9-2 Save button
19一 3 不定形データ用研究公開チェックボックス (患者用)  19-1 3 Research open check box for irregular data (for patients)
19-4 診断ボックス用研究公開チェックボックス (患者用)  19-4 Research open check box for diagnostic box (for patients)
19-5, 19-6 コメントボックス用研究公開チェックボックス (患者 用)  19-5, 19-6 Research public check box for comment box (for patients)
19-7 紹介ボックス用研究公開チェックボックス (患者用)  19-7 Research public check box for introduction box (for patients)
19-8 診断ボックス用研究公開チェックボックス (登録者用)  19-8 Research Release Check Box for Diagnostic Box (for Registrants)
19— 9, 19-10 コメントボックス用研究公開チェックボックス (登 録者用)  19—9, 19-10 Research public check box for comment box (for registrants)
19-1 1 紹介ポックス用研究公開チェックボックス (登録者用) 19-1 1 Research Open Box for Introduction Pox (for Registrants)
19-12 アクセス権追加制限変更ボタン 19-12 Access right addition restriction change button
19-13 診察時ァクセス権追加制限ボックス  19-13 Additional access right box for consultation
19-14 遠隔診断時ァクセス権追加制限ポックス  19-14 Pox for restricting access right during remote diagnosis
20 アクセス権保持者一覧画面  20 Access right holder list screen
21 医用データアクセス権追加制限設定ウィンドウ  21 Medical Data Access Right Addition Restriction Setting Window
21-1, 21-2 ラジオボタン  21-1, 21-2 radio buttons
21— 3 クローズボタン  21—3 Close button
22 遠隔診断引き受け医師検索画面  22 Remote diagnosis underwriting doctor search screen
23 遠隔診断引き受け可能医師一覧画面  23 List of Doctors Who Can Undertake Remote Diagnosis
24 評価コメントボックス  24 Evaluation comment box
24-1 「依頼者情報を見る」 ポタン  24-1 "View Client Information" Potan
25 逆評価コメントボックス  25 Negative evaluation comment box
26 遠隔診断依頼一覧画面  26 Remote diagnosis request list screen
27 評価■逆評価ウインドウ  27 Evaluation ■ Reverse evaluation window
27-1 評価コメント欄 27-2 評価 5段階欄 27-1 Evaluation comment field 27-2 Evaluation 5 rank column
27-3, 27-6, 27- 9, 27— 12 登録ボタン  27-3, 27-6, 27- 9, 27— 12 Registration button
27-4, 27- 5, 27- 10, 27- 1 1 チェックボックス  27-4, 27- 5, 27- 10, 27- 1 1 Check box
27-7 逆評価コメント欄  27-7 Comments for negative evaluation
27-8 逆評価 5段階欄  27-8 Negative evaluation 5 grade column
' 28 医用データ検索条件入力画面  '' 28 Medical data search condition input screen
28-1 医用データ検索条件入力欄  28-1 Medical data search condition input field
本発明及びその利点のより完全な理解のために、 以下の説明を添付の図面と共 に参照されたい。 発明を実施するための最良の形態  For a more complete understanding of the present invention and its advantages, refer to the following description in conjunction with the accompanying drawings. BEST MODE FOR CARRYING OUT THE INVENTION
本明細書における説明及び添付図面の記載により、少なくとも次の事項が明ら 力 4こされる。  At least the following matters will be apparent from the description in the present specification and the description of the accompanying drawings.
本発明の医用データ管理システムは、 各医療機関や自宅、 研究施設等に設置さ れた端末と、 医用データ管理サーバを、 インターネットや専用線等の通信手段に より接続したコンピュータシステムにより、患者、医師、準医療従事者、研究者、 医療機関が種別された構成会員となり、 医師による患者診察等で発生した医用 データを、 各会員が独立したアクセス権を保ちながら共有する事により、 患者の プライバシーを保全しながら、遠隔診断を可能にし、 且つ、 アクセス権保持者の 希望期間のデータ保存を可能とし、 医学分野での医用データの有効活用を図る手 段である。 以下に本発明の一実施例を示すが、 本発明はこれによって限定される ものではない。  The medical data management system of the present invention uses a computer system in which terminals installed at medical institutions, homes, research facilities, and the like, and a medical data management server are connected by communication means such as the Internet or a dedicated line. Physicians, quasi-medical workers, researchers, and medical institutions are classified members, and each member can share medical data generated by doctors' examinations while maintaining independent access rights, thereby ensuring patient privacy. This is a means of enabling remote diagnosis and preserving data for the desired period of access right holders while preserving safety, and making effective use of medical data in the medical field. Hereinafter, an example of the present invention will be described, but the present invention is not limited thereto.
まず始めに、 アクセス権管理手段を中心に本発明の医用データ管理システムの 骨格となる部分の概要について説明する。 本発明の医用データ管理システムは、 専用通信回線ゃィンターネット等の通信ネットワークを利用し、ネットワーク上 に登録'保管された医用データを、 会員が有効活用するためのコンピュータネッ トワークとプログラムで実現される。 First, the outline of the skeleton of the medical data management system of the present invention will be described focusing on the access right management means. The medical data management system of the present invention uses a communication network such as a dedicated communication line Internet, and a computer network for members to effectively use medical data registered and stored on the network. It is realized by network and program.
会員は患者会員、 医師会員、 医師以外の医療従事者会員 (例えば看護師や放射 線技師等を指し、 以後、 準医療従事者会員と呼ぶ) 、 医療機関会員 (例えば病院 会員) および研究者会員から構成され、 これらの会員は会員毎の I Dとログイン 用認証手段を用いて本発明の医用データ管理システムにネットワークを通して ログインする。 尚、 会員の種類は、 必ずしも本実施例の通りに限定されるもので はない。  Members include patient members, physician members, non-physician medical staff members (for example, nurses and radiation technologists, hereinafter referred to as quasi-medical worker members), medical institution members (for example, hospital members), and researcher members. These members log in to the medical data management system of the present invention through a network using the ID of each member and a login authentication means. The types of members are not necessarily limited as in this embodiment.
患者会員に対する医療行為に伴つて発生する検査画像などのデータや、 患者会 員が自分で取得した傷病に関するデータ (例えば自分で撮影した火傷の写真な ど) を医用データと呼ぶ。  Data such as inspection images generated by medical activities for patient members and data on injuries and illnesses acquired by the patient members themselves (for example, photographs of burns taken by themselves) are called medical data.
自己の医用データとは、 患者会員にとって、 その患者会員自身の医用データの ことであり、 患者会員が医師の診察を受けて発生したもの、 および自分で作成し たもの等、 全てを含む。  The patient's own medical data refers to the patient member's own medical data for the patient member, and includes all data generated by the patient member after consulting a physician and data generated by the patient member.
本発明の医用データ管理システムでは、会員の種類ごとに利用できる機能が限 定されており、 各会員が利用できる機能は、 会員のログイン後に表示される各会 員用のグ口一パルメ二ュ一の機能ボタンとして表示されてもよい。  In the medical data management system of the present invention, the functions that can be used for each type of member are limited, and the functions that can be used by each member are displayed for each member after login by the member. It may be displayed as one function button.
医師会員、 準医療従事者会員、 患者会員は医用データを本発明の医用データ管 理システムに登録することができる。  Doctor members, associate medical staff members, and patient members can register medical data in the medical data management system of the present invention.
登録された医用データは個々に管理ファィルを備えており、 この管理フアイル に含まれるアクセス権記録領域には、会員のアクセス権が記録されるようになつ ており、 アクセス権が記録された会員のみ、 その医用データへアクセス可能であ る。  The registered medical data has an individual management file, and the access right recording area included in this management file records the access right of the member, and only the member who has the access right is recorded. The medical data can be accessed.
登録された医用データに対して、 診療に関与する会員 (医師会員及び準医療従 事者会員) がアクセス権を獲得する手段としてアクセス権追加用認証手段が準備 されており、 該アクセス権追加用認証手段は、 患者会員によって管理される。 医師会員あるいは準医療従事者会員は、 診察に際して、 患者会員からアクセス 権追加用認証手段の開示を受け、 医用データ管理システムに該当患者会員のァク セス権追加用認証手段を入力した後に、 診察行為として本システムを利用可能な 状態 (以後、 「診察モード」 と呼ぶ) となり、 医用データ管理ファイルにァクセ ス権を追加記録することができるようになる。 For the registered medical data, access right addition authentication means is prepared as a means for members involved in medical treatment (physician members and quasi-medical staff members) to obtain access rights. Authentication measures are managed by the patient member. Physician members or associate medical staff members can access from patient members for consultation After receiving the disclosure of the authentication means for adding the right and entering the authentication means for adding the access right of the patient member to the medical data management system, the system can be used as a medical examination (hereinafter referred to as the “diagnosis mode”). The access right can be additionally recorded in the medical data management file.
「診察モード」 で新規に登録された医用データのアクセス権は、 まず医用デー タの登録を行った医師会員あるいは準医療従事者会員に与えられる事になる力 医用データに対して最大の権利を持つ者は患者自身であるとする主義の基、 患者 会員にもアクセス権を与えるようにしている。  The access right to the newly registered medical data in the “examination mode” is the power that will first be granted to the doctor member or the quasi-medical worker member who registered the medical data. Under the principle that the owner is the patient himself, access is also given to patient members.
尚、 患者会員は自己の医用データのみ登録でき、 登録に際してアクセス権追加 用認証手段の入力は必要ないものとし、 患者会員が自ら登録した医用データへの アクセス権は、 当初、 患者会員にのみ与えられることになる。  In addition, patient members can register only their own medical data, and it is not necessary to enter authentication means for adding access rights at the time of registration, and access rights to medical data registered by patient members are initially granted only to patient members. Will be done.
尚、 本発明の医用データ管理システムでは、 他のデータベースからデータ移行 され、 保管された医用データへのアクセス権は、 当初、 患者会員のみに与えられ ることになる。  In the medical data management system of the present invention, the right to access the medical data that has been migrated from another database and stored is initially given only to patient members.
医用データ管理システムに登録された医用データを有する患者会員力 他の医 療機関を受診し、 アクセス権追加用認証手段を他の医師会員あるいは準医療従事 者会員に提供すれば、 アクセス権追加用認証手段の提供を受けた医師会員あるい は準医療従事者会員は、 既に登録され保管されている医用データにアクセス権を 獲得することが可能となる。  Patient membership with medical data registered in the medical data management system Visiting another medical institution and providing the access right addition authentication means to other doctor members or quasi-healthcare professional members will increase the access right Physician members or associate medical staff members who have been provided with authentication means will be able to gain access to already registered and stored medical data.
又、 アクセス権追加用認証手段は患者会員が管理し、 患者会員によって変更可 能であるため、 患者会員が変更してしまえば、 医師会員あるいは準医療従事者会 員は、 過去に知り得たアクセス権追加用認証手段を利用して、 アクセス権を有し ていない医用データに、 新たにアクセス権を獲得することはできなくなる。 尚、 アクセス権追加用認証手段が変更されても、 既にアクセス権を有している 医用データについては引き続きアクセス可能であり、 会員は正当な手段で獲得し た医用データに関するアクセス権が保証される。 この機能により、 例えば、 医師 会員は診断の根拠とした医用データを患者会員から一方的に剥奪されない。 In addition, since the authentication means for adding access right is managed by the patient member and can be changed by the patient member, if the patient member changes, the doctor member or the associate medical staff member can know in the past It is no longer possible to acquire new access rights to medical data without access rights by using the access right addition authentication means. Even if the authentication method for adding access rights is changed, medical data that already has access rights can still be accessed, and members are guaranteed access rights to medical data acquired by legitimate means. . With this feature, for example, a doctor The member is not unilaterally stripped from the patient member of the medical data on which the diagnosis was based.
本発明の医用データ管理システムにおいて、 患者会員が幼小であったり、 疾病 のため適格な判断や処理ができない場合は、正当な親権者や後見人が患者会員の 権利と義務を代行することを めてもよい。  In the medical data management system of the present invention, if a patient member is too small or unable to make an appropriate judgment or process due to illness, it is important that a legitimate parent or guardian take over the rights and obligations of the patient member. Is also good.
その他、 本発明の医用データ管理システムにおいて、 会員種毎に実施できる機 能の例について説明する。  In addition, examples of functions that can be performed for each member type in the medical data management system of the present invention will be described.
医師会員は、 主に医用データの登録、 閲覧、 加工、 診断コメントの登録、 遠隔 診断の依頼、遠隔診断の引き受け等が可能である。患者会員は医用データの登録、 閲覧、 加工と遠隔診断の依頼が可能である。 医療機関会員 (病院会員) は患者会 員に関する受付業務などの事務処理を行う施設会員であり、本発明の医用データ 管理システムが医療機関の電子カルテとして利用される場合はコスト負担者と なり得る。研究者会員は患者会員が研究用に開示を了承した医用データに関して のみ、 研究や教育■学習のため医用データの検索、 閲覧と加工が可能であるが、 診療には関与しない。  Physician members can mainly register, view, process, register diagnostic comments, request remote diagnosis, and undertake remote diagnosis, etc. for medical data. Patient members can register, view, process, and request remote diagnosis of medical data. Medical institution members (hospital members) are facility members who perform administrative tasks such as reception work for patient members, and can become cost bearers when the medical data management system of the present invention is used as an electronic medical record of a medical institution. . Researcher members can search, browse, and process medical data for research, education, and learning only for medical data that the patient member has approved for research, but are not involved in clinical practice.
本発明の医用データ管理システムにおいて、 遠隔診断の依頼を行なう時、 遠隔 診断の依頼者は、既に遠隔診断に使用する医用データにアクセス権を持つ会員で なくてはならない。 医用データにアクセス権を持つ会員が、 新たに他の医師会員 に当該医用データへのアクセス権を与える事を可とすることにより、遠隔診断の 被依頼者は、 当該医用データへアクセスすることが可能となり、 アクセス権追加 用認証手段に頼ることなく、 遠隔診断時のアクセス権が確保される。  In the medical data management system of the present invention, when requesting a remote diagnosis, the requester of the remote diagnosis must be a member who already has an access right to the medical data used for the remote diagnosis. By allowing members who have access to medical data to newly grant access to the medical data to other doctor members, the requestee of the remote diagnosis can access the medical data. As a result, access rights at the time of remote diagnosis are secured without relying on authentication means for adding access rights.
実施例では口グイン用認証手段の 1例として口グイン用パスヮードを用い、 ァ クセス権追加用認証手段の 1例としてのパスワードを診察キーと呼ぶ。 また、 使 い捨て認証手段の 1例としての使い捨てパスワードを用い、 これをワンタイムパ スヮードと呼ぶ。  In the embodiment, a password for mouth login is used as an example of authentication means for mouth login, and a password as an example of authentication means for adding access right is called a diagnosis key. Also, a one-time password is used as an example of a one-time authentication means, and this is called a one-time password.
尚、 使い捨て認証手段とは、 医用データへのアクセス権追加行為に対して保護 が設定されている場合に、 この保護を解除するために 1回だけ利用できる認証手 段のことであり、 使い捨て認証手段には、 保護しているデータの全てに共通して 利用可能な「汎用使い捨て認証手段(本実施例では汎用ワンタイムパスワード) 」 と、 特定の医用データに対する保護のみを解除できる 「特異的使い捨て認、証手段 (本実施例では特異的ワンタイムパスワード) 」 がある。 In addition, the disposable authentication means is an authentication method that can be used only once to release this protection when protection is set for the act of adding access rights to medical data. The disposable authentication means includes “general-purpose disposable authentication means (general-purpose one-time password in this embodiment)” that can be used in common for all protected data, and protection for specific medical data. There is a "specific disposable authentication and certification means (specific one-time password in this embodiment)" that can only be released.
例えば、汎用ワンタイムパスヮードで保護されている医用データが複数存在し た場合、 一つの汎用ワンタイムパスワードで、 何れ力任意の一つを解除でき、 一 方、 特異的ワンタイムパスワードで保護されている医用データの場合は、 各医用 データ用に作成された特異的ワンタイムパスヮ一ドでなければ解除できない。 以下、 図 1〜図 3 5を参照して詳細に説明する。  For example, if there is more than one medical data protected by a general-purpose one-time password, one general-purpose one-time password can unlock any one of them, while a special one-time password protects it. In the case of medical data that has been set, it can only be released with a specific one-time pass code created for each medical data. The details will be described below with reference to FIGS.
例えば、 図 1に示すように、 インターネット 1一 7上に構築されたネットヮ一 クシステムと、 大規模医療機関 1— 1 5において構築された院内ネットワーク 1 _ 8と、 中規模医療機関 1一 1 6において構築された院内ネットワーク 1一 9と、 小規模医療機関 1一 1 7において設置されたデータ取込参照端末 1一 1 2と力 S 通信回線を介して接続されてネットワークが構成されている。 このネットワーク は、 V P N、 WAN, 専用線等適宜の形態で構築することができる。  For example, as shown in Fig. 1, a network system built on the Internet 117, an in-hospital network 1_8 built in large-scale medical institutions 1-15, and a medium-scale medical institution 1-1 1 The in-hospital network 1-9 established in 6 and the data acquisition reference terminal 1 1 2 installed in the small medical institution 1 1 1 7 are connected via a power S communication line to form a network. . This network can be constructed in any suitable form such as VPN, WAN, leased line, etc.
インターネット 1一 7上に構築されたネットワークシステムには、 データ管理 サーバ 1一 1 , 1一 2 , 1—3と、該データ管理サーバの上位に設けられたミラー 認証局 1一 6 a , 1 - 6 b及びルート認証局 1一 6が備えられている。  The network system built on the Internet 117 includes a data management server 111, 112, 1-3 and a mirror certificate authority 116a, 1- provided above the data management server. 6 b and a root certificate authority 1-6 are provided.
各データ管理サーバ 1— 1, 1— 2, 1 _ 3では、 サーバ間は暗号通信によつ て連携がなされ、 医用データの登録、 保管、 閲覧、 アクセス権管理等についての 処理が行われる。  In each of the data management servers 1-1, 1-2, and 1-3, the servers are linked by encryption communication, and processing such as registration, storage, browsing, and access right management of medical data is performed.
各データ管理サーバ 1一 1, 1— 2, 1 - 3の暗号通信時の認証はルート認証 局 1—6及びミラー認 UE局 1—6 a , 1 - 6 bによって分散処理される。  Authentication of each data management server 11-1, 1-2, 1-3 during cryptographic communication is distributed and processed by the root authentication station 1-6 and the mirror authentication UE stations 1-6a, 1-6b.
各データ管理サーバ 1一 1, 1— 2, 1一 3には、 医用データ、 会員情報、 管 理情報 (医用データ管理ファイル、 その他の情報等) のファイルが保存され、 医 用データを運用するためのプログラムが格納されており、 管理者によって管理運 営されている。 Each data management server 111, 1-2, 113 stores medical data, member information, and management information (medical data management file, other information, etc.) files, and operates medical data. Programs are stored and managed by the administrator. Is operated.
. - 1 5において構築されたネットワークシステムは、 プリッ ジ-データサーバ 1— 4、 及びデータ取込参照端末 1一 1 0を具備しており、 管 理者等によつて管理運営され、 医師会員 A等によつて利用されている。  -The network system constructed in 15 is equipped with a pledge-data server 1-4 and a data retrieval reference terminal 110, and is managed and operated by an administrator, etc. Used by A and others.
中規模医療機関 1— 1 6において構築されたネットワークシステムは、 プリッ ジ■キヤッシュサーバ 1—5及びデータ取込参照端末 1— 1 1を具備しており、 医師会員 B等によつて利用されている。  The network system constructed in the medium-scale medical institution 1-16-1 has a pledge cache server 1-5 and a data acquisition reference terminal 1-11-1, and is used by the doctor member B etc. I have.
小規模医療機関 1 _ 1 7は、 データ取込参照端末 1— 1 2を具備しており、 医 師会員 C等によつて利用されている。  The small medical institution 1_17 has a data capture reference terminal 1-12, and is used by the medical member C and others.
大規模医療機関 1— 1 5、 中規模医療機関 1— 1 6、 小規模医療機関 1— 1 7 に構築されている構成を詳細に説明する。  The details of the configuration of the large medical institution 1-15, the medium-sized medical institution 1-16, and the small medical institution 1-17-1 are described in detail.
ブリッジ.データサーバ 1一 4、 ブリッジ 'キヤッシュサーバ 1一 5はそれぞ れ、 院内ネットワーク 1— 8、 1 _ 9を介してデータ取込参照端末 1—1 0、 1 - 1 1と接続され、 インターネット 1一 7を介して、 データ管理サーバ 1一 1と 接続されている。  The bridge data server 114, the bridge's cache server 115 are connected to the data acquisition reference terminal 1-1-10, 1-1-1 via the hospital network 1-8, 1-9, respectively. It is connected to the data management server 111 via the Internet 117.
プリッジ■データサーバ 1一 4は、 大規模医療機関 1一 1 5で登録される医用 データを保管する機能と、大規模医療機関 1 _ 1 5のデータ取込参照端末 1一 1 0より要求のあった医用データで大規模医療機関 1一 1 5以外で登録された医 用データを一時的に蓄える機能を有し、再度のデータ要求時の処理時間短縮を期 待されると共に、 セキュリティ向上が図られている。  The Bridge ■ data server 114 has a function to store medical data registered at the large-scale medical institution 115, and a request from the data acquisition reference terminal 111-10 of the large-scale medical institution 1-115. It has a function to temporarily store medical data registered in large medical institutions other than the large medical institution using the existing medical data, which is expected to reduce the processing time when requesting data again and improve security. It is planned.
即ち、 プリッジ ·データサーバ 1一 4では、 大規模医療機関 1一 1 5がロー力 ル医用データ (独自の医用データ) を保管できるハードディスク 1一 4 aと、 医 用データ及び会員情報、 管理情報のキャッシュ機能を有するハードディスク 1一 4 bとが備えられている。  In other words, in the PRIMIT data server 114, a large-scale medical institution 115 can store hard disk medical data (original medical data) 114a, medical data, member information, and management information. And a hard disk 114b having a cache function.
ブリッジ 'キヤッシュサーバ 1一 5は中規模病院 1一 1 6のデータ取込参照端 末 1 _ 1 1より要求のあった医用データを一時的に蓄える機能を有し、 再度の データ要求時の処理時間短縮を期待されると共に、 セキュリティ向上が図られて いる。 The bridge's cache server 115 has the function of temporarily storing medical data requested by the data capture reference terminal 1-111 of a medium-scale hospital 1-116. It is expected to shorten the processing time when requesting data and improve security.
即ち、 ブリッジ 'キャッシュサーバ 1 _ 5には、 医用データ及び会員情報、 管 理情報のキャッシュ機能を有するハードディスク 1—5 bが備えられている。 小規模医療機関 1— 17、 住宅 1一 1 8、 研究施設 1— 19では、 データ取込 参照端末 1— 1 2, 1-1 3, 1一 14が、 インターネッ ト 1—7を介して、 そ れぞれデータ管理サーバ 1_ 2, 1-3, 1 _ 3と接続できるようにされている。 なお、 上記各サーバや端末は、 W i n d o w s NT (商標) 、 W i n d o w s X P (商標) 、 L i nux (商標) などの適宜のオペレーティングシステムによつ て構築することができる。  That is, the bridge 'cache server 1_5 includes a hard disk 1-5b having a function of caching medical data, member information, and management information. At small medical institutions 1-17, houses 1-18, and research facilities 1-19, data capture and reference terminals 1-1-2 1-1-3 1-114 are connected via the Internet 1-7 Each can be connected to the data management servers 1_2, 1-3, and 1_3. Each of the above servers and terminals can be constructed by an appropriate operating system such as Windows NT (trademark), Windows XP (trademark), and Linux (trademark).
データ管理サーバ 1— 1, 1一 2, 1一 3のハードディスク 1— 1 a , 1—2 a, 1-3 aに格納されている会員情報は、 会員登録した際の会員情報フアイノレ を含み、 図 2に患者会員及び医師会員の会員情報フアイル 2— 1 , 2— 2の例を 示す。 なお、 上記のハードディスクは、 半導体ディスク等の他の記憶装置を用い て置き換えることもできる。  The member information stored in the hard disk 1-1a, 1-2a, 1-3a of the data management server 1-1, 1-1-2, 1-3-3 includes the member information file at the time of member registration, Figure 2 shows examples of member information files 2-1 and 2-2 for patient and doctor members. Note that the above hard disk can be replaced with another storage device such as a semiconductor disk.
患者会員の会員情報ファイル 2—1には、 会員 I Dと、 患者の氏名、 住所、 生 年月日、電話番号等の個人識別情報と、料金の決済方法、口グイン用認証手段(例 えば、口グイン用パスヮード)、アクセス権追加用認証手段(例えば、診察キー)、 保管責任自動放棄フラグ 2— 1 a、 アクセス権を有する医用データ番号の他、 汎 用使い捨て認証手段 2 _ 1 b (使い捨て認証手段の 1つで本実施例では汎用ヮン タイムパスワード) が必要に応じて格納されている。  The patient member's member information file 2-1 contains the member ID, personal identification information such as the patient's name, address, date of birth, telephone number, payment method, and authentication method for login (for example, Password for mouth login), authentication means for adding access rights (for example, a medical examination key), automatic storage abandonment flag 2-1a, medical data number with access right, general-purpose disposable authentication means 2 _ 1b (disposable In this embodiment, one of the authentication means is a general-purpose one-time password, which is stored as needed.
医師会員の会員情報ファイル 2— 2には、 会員 I Dと、 医師の氏名、 住所、 生 年月日、 電話番号等の個人識別情報と、 料金の決済方法、 所属する医療機関会員 の情報、 ログイン用認証手段 (例えば、 ログイン用パスワード) 、専門分野等の 遠隔診断関連情報、 保管責任自動放棄フラグ 2— 2 a、 アクセス権を有する医用 データ番号が格納されている。 図 3に医用データ管理ファイルの構造例を示す。 医用データ管理ファイル 3は 基本部 3— 1とアクセス権記録領域 3— 2と力、らなり、 基本部 3—1には、 医用 データ番号、 医用データの格納場所、 医用データ容量、 診察時アクセス権追加制 限、 遠隔診断時アクセス権追加制限、 特異的使い捨て認証手段 3 _ 1 a (使い捨 て認証手段の 1つで本実施例では特異的ワンタイムパスワード) 、 研究利用にお ける公開範囲 (診断等) が格納されており、 アクセス権記録領域 3— 2には、 ァ クセス権を有する会員毎に、 医用データ番号、 会員 I D、 アクセス権取得日時、 アクセス権追加会員 (該アクセス権を追加した会員の会員 I D) と、 アクセス権 追加行為 (診察や、 遠隔診断等、 該アクセス権の追加に至った経緯のこと) 、 重 要フラグ 3— 2 a、 不要フラグ 3— 2 b等の情報がある。 The member information file 2-2 of the doctor member contains the member ID, personal identification information such as the doctor's name, address, date of birth, telephone number, payment method, information on the member of the medical institution, login Authentication information (eg, password for login), remote diagnosis related information such as specialty field, storage liability automatic abandonment flag 2-2a, and medical data number with access right are stored. Fig. 3 shows an example of the structure of the medical data management file. The medical data management file 3 consists of the basic part 3-1 and the access right recording area 3-2. The basic part 3-1 contains medical data numbers, medical data storage locations, medical data capacity, and access during examinations. Restriction on additional right, additional restriction on access right during remote diagnosis, specific disposable authentication means 3 _ 1a (one of the disposable authentication means and specific one-time password in this embodiment), open range for research use (Diagnosis, etc.) are stored in the access right recording area 3-2. For each member having the access right, the medical data number, the member ID, the date and time of access right acquisition, the access right additional member (the access right The member ID of the added member), the access right addition act (how the access right was added, such as consultation and remote diagnosis), the important flag 3-2a, the unnecessary flag 3-2b, etc. There is information.
尚、 図 3には、 医用データ管理ファイル 3の基本部 3— 1の構造例に対する、 基本部のデータ例 3— 3と、 アクセス権記録領域 3— 2の構造例に対する、 ァク セス権記録領域のデータ例 3— 4も示している。  FIG. 3 shows an example of the structure of the basic part 3-1 of the medical data management file 3, the example of the basic part data 3-3, and the access right record of the example of the structure of the access right recording area 3-2. Data examples 3-4 of the area are also shown.
会員登録処理のフローは、 図 4に基づいて行われており、 会員登録処理のフ ローを図 1、 図 2、 図 5を参照して説明する。 まず、 非会員が本発明の医用デー タ管理システムに会員登録する場合、 図 1のインターネット 1—7に接続された データ取込参照端末 1 _ 1 0 , 1— 1 1, 1一 1 2 , 1 - 1 3 , 1—1 4のいず れかを利用して、 図 5に示すような本システムのホームページ画面 5— 1からォ ンライン会員登録メニュー 5— 2を選択し、 会員登録用画面 (図示せず) を表示 させ、 患者会員、 医師会員、 準医療従事者会員、 医療機関会員、 研究者会員の選 択ポタンの中から会員種を適宜選択する (S 4— 1 ) 。  The flow of the member registration process is performed based on FIG. 4, and the flow of the member registration process will be described with reference to FIGS. 1, 2, and 5. First, when a non-member registers as a member in the medical data management system of the present invention, the data capture reference terminals 1 _ 10, 1-11, 1-1 1, 1-1 2, connected to the Internet 1-7 in FIG. 1-13 or 1-14, select the online member registration menu 5-2 from the homepage screen 5-1 of this system as shown in Fig. 5 as shown in Fig. 5, and select the member registration screen. (Not shown) is displayed, and the member type is appropriately selected from the selection buttons of patient members, doctor members, associate medical staff members, medical institution members, and researcher members (S4-1).
例えば、 大規模医療機関 1— 1 5が本発明の医用データ管理システムを利用し たい場合は、 前記選択ボタンから医療機関会員を選択し、 研究者が医用データを 研究材料として閲覧したい場合は、 研究者会員を選択する。  For example, if a large-scale medical institution 1-15 wants to use the medical data management system of the present invention, select a medical institution member from the selection button, and if a researcher wants to view medical data as research material, Select a researcher member.
会員種選択後、 会員種ごとに会員規約を表示させ (S 4— 2 ) 、 同意した後、 会員登録に必要な情報(氏名、住所等、医師会員は医師免許番号等) を入力し(S 4 - 3 ) , 料金の決済方法を選択して (S 4— 4 ) 、 会員登録を行う。 After selecting the membership type, display the membership agreement for each membership type (S4-2), and after agreeing, enter the information required for membership registration (name, address, doctor license number for doctor members, etc.) (S4-2) 4-3), Select the payment method (S 4-4) and register as a member.
例えば、 患者会員 aは住宅 1一 1 8からでも会員登録でき、 会員登録後に会員 I D、 口グイン用認証手段として仮の口グイン用パスヮード、 アクセス権追加用 認証手段として診察キーが付与される (S 4— 5 ) 。  For example, a patient member a can register as a member from the residence 118, and after registration, a member ID, a temporary password for mouth login as authentication means for mouth login, and a consultation key as authentication means for adding access right are given ( S4—5).
又、 医師会員や準医療従事者会員の場合には、 医師免許証や看護師免許証の写 し等で本人が確認された後、 正式な会員登録がなされる事としても良い。  Also, in the case of a member of the physician or associate medical staff, a formal membership registration may be made after the identity of the member is confirmed by a copy of a doctor's license or a nurse's license.
会員として登録した際の個人情報は、 例えば図 2に示すように、 会員情報ファ ィル 2— 1, 2 - 2に記録され、 該会員情報ファイルには会員の個人情報の他、 各会員がアクセス権を持つ医用データ番号のリストも格納されており、 各会員が アクセス権を持つ医用データが変更される度に、 アクセス権を有する医用データ 番号のリストも更新される。  The personal information at the time of registration as a member is recorded in the member information files 2-1, 2-2, as shown in Fig. 2, for example. A list of medical data numbers with access rights is also stored, and each time the medical data to which each member has access rights is changed, the list of medical data numbers with access rights is updated.
つぎに、 会員登録後の各会員に共通するアクセス手順について、 図 1, 図 5 , 図 6を参照して説明する。 各会員は、 図 1に示すィンターネット 1一 7に接続さ れたデータ取込参照端末 1 _ 1 0, 1— 1 1, 1— 1 2 , 1— 1 3, 1— 1 4か ら、 図 5の本システムのホームページ画面 5—1に至り、 会員 I Dと、 ログイン 用パスワードによって口グインし、各会員専用の口グイン後初期画面 6へ遷移す る。  Next, an access procedure common to each member after the member registration will be described with reference to FIGS. 1, 5, and 6. FIG. Each member is connected to the data capture reference terminals 1_10, 1–11, 1–12, 1–13, and 1–14 connected to the Internet 117 shown in Fig. 1. Then, the home page screen 5-1 of the system shown in Fig. 5 is reached, and the login is performed with the member ID and the login password. After the login for each member, the initial screen 6 is displayed.
各会員への連絡事項がある場合、 図 6に示す口グイン後初期画面 6のお知らせ 欄 6— 6に、 「お知らせ」 が表示される。  If there is a message to each member, "Notification" is displayed in the notification field 6-6 on the initial screen 6 after the login as shown in Fig. 6.
「お知らせ」 の内容として、 医用データの保管責任者になった場合の通知、 ァ クセス権追加の通知設定がなされている医用データに対してアクセス権の追加 があったことの通知、遠隔診断に関する通知や医用データ管理システムの運用者 からの連絡事項等がある。  The contents of “Notification” include notification when the person in charge of storage of medical data has been notified, notification that access rights have been added to medical data for which access right addition notification has been set, and remote diagnosis. There are notifications and messages from the operator of the medical data management system.
図 6に示す口グイン後初期画面 6からは、 会員種別に会員が行える機能をまと めた機能ボタンであるグローバルメニューが表示されており、 このグローバルメ ニューから会員の希望する処理画面への移動が実現される。 これらのメニューポ タンは、 キーボード等の入力デバイス上に配置されるファンクションキーに割り 当ててもよい。 また、 上記の、 および後出の図面に図示される本管理システムに おける表示画面は、 その一設計例を示すものであるから、 当業者がその知識に基 づいて容易になし得る他の画面設計についても本願発明の範囲に含まれるもの である。 From the initial screen 6 after mouth login shown in Fig. 6, a global menu is displayed, which is a function button that summarizes the functions that can be performed by the member according to the member type. From this global menu, the user can switch to the processing screen desired by the member. Movement is realized. These menu points The button may be assigned to a function key arranged on an input device such as a keyboard. Also, the display screens of the present management system shown in the above and later drawings show one design example, and therefore, other screens that can be easily made by those skilled in the art based on their knowledge. The design is also included in the scope of the present invention.
グローバルメニューは、 会員種によって異なる機能を含んでおり、 常にどの画 面に移動しても原則として表示され、 その画面で実施可能な機能のポタンのみが 有効になる。  The global menu includes functions that differ depending on the type of member, and is always displayed in principle regardless of which screen you move to, and only the buttons that can be executed on that screen are valid.
会員毎のグローバルメニューは図 7〜図 1 1に示されており、ディスプレイ上 で、 一列表示できない場合には、 キー操作により、 隠れていた次のグローバルメ ニューが現れる構成となってもよい。 図 7が医師会員用グローバルメュユー 7、 図 8が患者会員用グローバルメニュー 8、 図 9が準医療従事者会員用グローバル メニュー 9、 図 1 0が医療機関会員用グローバルメニュー 1 0、 図 1 1が研究者 会員用グローバルメニュー 1 1の例である。 (以下、各会員用グローバルメニュー 7, 8, 9, 1 0, 1 1と呼ぶ。 )  The global menu for each member is shown in Fig. 7 to Fig. 11. If it is not possible to display a single line on the display, the next global menu that has been hidden may appear by key operation. Figure 7 shows the Global Menu 7 for physician members, Figure 8 shows the Global Menu 8 for patient members, Figure 9 shows the Global Menu 9 for associate medical staff members, and Figure 10 shows the Global Menu 10 for medical institution members, Figure 11 Here is an example of a global menu for researchers members. (Hereafter referred to as the global menu for each member 7, 8, 9, 10 and 11)
図 6に示す 「お知らせ」 欄 6— 6や各会員用グローバルメニュー 7, 8 , 9, 1 0 , 1 1により開かれるウィンドウには、 クローズポタン 6 _ 7があり、 これ をチェックする事でウィンドウは閉じられる。  The window opened by the “Information” column 6-6 shown in Fig. 6 and the global menu 7, 8, 9, 10, 10 and 11 for each member includes a close button 6_7. Is closed.
本システムには各会員用グローバルメニュー 7 , 8 , 9 , 1 0, 1 1の他に、 移動した画面でのみ表示されるローカルメニューとして、 例えば図 1 3の 「医用 データを開く」 ボタン 1 3— 1等があり、 この機能ボタンは必要に応じて表示さ れる。  In this system, in addition to the global menu 7, 8, 9, 10, and 11 for each member, a local menu that is displayed only on the screen to which the user has moved is displayed. — There are 1 etc., and this function button is displayed as needed.
又、 各会員用グローバルメニュー 7 , 8, 9 , 1 0, 1 1に備えられている全 ての会員に共通の機能ボタンとして、 図 6に示す口グインパスヮード変更ボタン 6— 1, 会員基本情報ポタン 6— 2 , ログイン履歴ポタン 6— 3, アクセス可能 データボタン 6 _ 4, 保管責任情報ボタン 6— 5がある。 各会員用グローバルメェユー 7 , 8, 9 , 1 0, 1 1に備えられている全ての 会員に共通の機能には、 ログイン用パスワードの変更機能があり、 ログインパス ワード変更ボタン 6— 1を選択すると、 ログイン用パスワードの変更画面 (図示 せず) に移動する。 In addition, as a function button common to all members provided in each member's global menu 7, 8, 9, 10 and 11, a login password change button 6-1 shown in FIG. 6-2, Login history button 6-3, Accessible data button 6_4, Storage responsibility information button 6-5. A function common to all members provided in each member's global menu 7, 8, 9, 10 and 11 is a function to change the login password. Click the login password change button 6-1. When selected, move to the login password change screen (not shown).
口グイン用パスヮードの変更画面(図示せず)では、現在の口グイン用パスヮー ドの入力が要求され、 入力したパスワードが真の場合は、 つぎに新たなログイン 用パスヮードの入力が複数回要求され、入力した新しい口グイン用パスヮードが 全て一致した場合、 本システムはログイン用パスワードの変更を認め、 これをシ ステムに登録する。  On the screen for changing the login password (not shown), the input of the current login password is requested. If the entered password is true, the input of the new login password is requested multiple times. If all of the entered new login passwords match, the system accepts the change of the login password and registers it in the system.
加えて、 各会員用グローバルメニュー 7, 8, 9 , 1 0 , 1 1に備えられてい る全ての会員に共通の機能ボタンとして、 会員基本情報ボタン 6— 2があり、 自 己の会員基本情報の確認、 および、 変更を行うことができる。  In addition, there is a member basic information button 6-2 as a function button common to all members provided in each member's global menu 7, 8, 9, 10, 10 and 11. You can check and make changes.
例えば、氏名、性別、生年月日、住所、職業、電話番号、電子メールァドレス、 利用料金の決済手段などの会員基本情報の確認と、 変更の可能性がある情報、 例 えば住所、 電話番号などの変更が可能である。  For example, check basic member information such as name, gender, date of birth, address, occupation, telephone number, e-mail address, payment method of usage fee, etc., and information that may change, for example, address, telephone number, etc. Can be changed.
医師会員は、 会員基本情報の中に、 遠隔診断における診療科、 専門領域、 遠隔 診断の条件などを登録できる。  Physician members can register medical departments, specialty fields, and conditions for remote diagnosis in the basic member information.
さらに、 各会員用グローバルメニュー 7 , 8, 9 , 1 0, 1 1に備えられてい る全ての会員に共通の機能として、 ログイン履歴のボタン 6— 3があり、 過去の ログインの履歴が表示される。  In addition, as a function common to all members provided in each member's global menu 7, 8, 9, 10 and 11, there is a login history button 6-3, which displays past login history. You.
各会員用グローバルメニュー 7, 8 , 9, 1 0, 1 1に備えられている全ての 会員に共通の機能として、 アクセス可能データの一覧機能があり、 アクセス可能 データボタン 6— 4を選択すると、 図 1 3に示すアクセス可能医用データ一覧画 面 1 3が表示される。  As a function common to all members provided in the global menu 7, 8, 9, 10, 10 and 11 for each member, there is a list function of accessible data. When the accessible data button 6-4 is selected, The accessible medical data list screen 13 shown in FIG. 13 is displayed.
アクセス可能医用データ一覧画面 1 3では、 図 2のログインした会員の会員情 報ファイル 2— 1 , 2—2に記録されているアクセス可能な医用データ番号を元 に、医用データ管理ファイルが検索され、患者会員の会員情報ファイル 2— 1と、 図 3の医用データ管理ファイル 3の情報から、 患者会員の氏名、 患者会員 I D、 医用データが作られた日、 つまり患者会員が検査や診察を受けた日である医用 データの発生日、 医用データの本システムへの登録日、 データ種、 医用データの データサイズ、 医用データを識別するための簡単なコメントなどの中から、 ログ インしている会員に閲覧が許可されている項目が表示される。 In the accessible medical data list screen 13, the accessible medical data numbers recorded in the logged-in member information files 2-1 and 2-2 in FIG. Then, the medical data management file is searched, and from the member information file 2-1 of the patient member and the information in the medical data management file 3 in FIG. 3, the name of the patient member, the patient member ID, the date when the medical data was created, In other words, the date when the medical data was generated, which is the date when the patient member received the examination or consultation, the date when the medical data was registered in the system, the data type, the data size of the medical data, and a simple comment to identify the medical data. From among the items, the items that the logged-in member is allowed to view are displayed.
患者会員には、 アクセス可能医用データ一覧画面 1 3の閲覧制限はないが、 研 究者会員には、 閲覧が許可された内容のみ表示され、 一般に患者氏名や患者会員 I Dは表示されないようになっている。  Patient members have no access restrictions on the accessible medical data list screen 13, but researcher members will only see what they are authorized to see, and will generally not see the patient's name or patient member ID. ing.
グローバルメニューに備えられている全ての会員に共通の機能として、 医用 データの保管責任情報一覧機能があり、 図 6の保管責任情報ボタン 6— 5により、 図 1 4に示す保管責任医用データ一覧画面 1 4を表示することができ、 重要-不 要入力欄 1 4一 1で一覧表示のまま、 図 3に示す医用データの重要フラグ 3— 2 aの設定と、 不要フラグ 3— 2 bの設定による保管責任放棄の決定ができる。 又、 図 1 3に示すアクセス可能医用データ一覧画面 1 3や、 図 1 4に示す保管 責任医用データ一覧画面 1 4で、 医用データを選択して開くと、 図 1 8に示す医 用データ詳細閲覧画面 (医師用) 1 8が通常モード (非診察モード) で開かれ、 アクセス者.モード欄 1 8— 1に 「通常モード」 と表示される。  As a function common to all members provided in the global menu, there is a medical data storage responsibility information list function. The storage responsibility medical data list screen shown in Fig. 14 is displayed by pressing the storage responsibility information button 6-5 in Fig. 6. 1 4 can be displayed, and important / unnecessary input fields 1 4 1 1 While setting the list, the important flag 3-2a and the unnecessary flag 3-2b of the medical data shown in Fig. 3 are set. A waiver of storage liability by Select and open medical data on the accessible medical data list screen 13 shown in Fig. 13 or the storage responsible medical data list screen 14 shown in Fig. 14 to display the medical data details shown in Fig. 18. The browsing screen (for doctors) 18 is opened in the normal mode (non-diagnosis mode), and “Normal mode” is displayed in the accessor.mode column 18-1.
次に、 グローバルメニューに備えられている機能の中で、 会員の種類によって 異なるものについて説明する。  Next, among the functions provided in the global menu, those that differ depending on the type of member will be described.
例えば、 図 1 0に示す医療機関会員用グローバルメニュー 1 0の受診患者受付 ポタン 1 0— 1によって、 患者受付画面 (図示せず) を表示させ、 本日の外来受 付を行うことができ、 患者会員が外来受付されると、 外来受診記録ファイル (図 示せず) に記録される。  For example, the patient reception screen (not shown) can be displayed by using the patient reception button 10-1 in the global menu 10 for medical institution members shown in Fig. 10, and today's outpatient reception can be performed. When a member is accepted outpatient, it is recorded in an outpatient consultation record file (not shown).
外来受診記録ファイルは、 例えば、 図 1に示した大規模医療機関 1— 1 5の データ取込参照端末 1一 1 0からデータ管理サーバ 1一 1に保管され、 受診情報 と簡単なコメントを登録することができる。 The outpatient consultation record file is stored in the data management server 111 from the data acquisition reference terminal 110 of the large medical institution 1-15 shown in Fig. 1, for example. And you can register a simple comment.
図 1 0に示した医療機関会員用グローバルメニュー 1 0には、 入院患者受付ボ タン 1 0— 2があり、 これにより、 入院受付を行い、 患者会員が入院受付された 事は入院手続き記録ファイル (図示せず) に記録される。  The global menu for medical institution members 10 shown in Fig. 10 has an inpatient reception button 10-2, which is used to receive inpatients and record that the patient member was admitted. (Not shown).
入院手続き記録ファイルは、 図 1に示すデータ管理サーバ 1一 1に保管され、 入院手続き情報と簡単なコメントを持つことができる。  The hospitalization procedure record file is stored in the data management server 111 shown in Fig. 1, and can have the hospitalization procedure information and simple comments.
図 7の医師会員用グローバルメニュー 7、 図 9の準医療従事者会員用グローバ ルメニュー 9、 図 1 0の医療機関会員用グローバルメニュー 1 0には、 受診患者 ポタン 7— 1, 9一 1, 1 0— 3があり、 このボタンを選択することで、 図 1 5 に示す診察患者一覧 (外来) 画面 1 5が表示される。  The global menu for physician members 7 in Fig. 7, the global menu for quasi-healthcare professional members 9 in Fig. 9, and the global menu 10 for medical institution members in Fig. 10 include: There are 1 0-3, and by selecting this button, the Examined Patient List (Outpatient) screen 15 shown in Fig. 15 is displayed.
医師会員用グ口一パルメニュー Ί、準医療従事者会員用グ口一パルメニュー 9、 医療機関会員用グローバルメニュー 1 0には、 入院患者ボタン 7— 2, 9 - 2 , 1 0— 4があり、 このボタンを選択することで、 現在入院中の患者一覧である診 察患者一覧 (入院) 画面 (図示せず) が表示される。  Group menu for physician members Ί Group menu for quasi-healthcare professional members 9, Global menu 10 for medical institution members include in-patient buttons 7-2, 9-2, 10-4 Yes, by selecting this button, a list of patients (in-patient) screen (not shown), which is a list of patients currently in the hospital, is displayed.
図 7に示すように、 医師会員用グローバルメニュー 7には、 新規診察患者ボタ ン 7 _ 3があり、外来あるいは入院中の診察リストから医師は患者会員をクリッ クして選択し、 この新規診察患者ボタンをクリックすると、 診察キーを本システ ムが要求するので、 正しく入力すると、 図 1 6に示す診察対象患者データ一覧画 面 1 6が表示される。  As shown in Figure 7, the Physician Member's Global Menu 7 has a new patient button 7_3, from which a physician clicks to select a patient member from an outpatient or in-patient list and If you click on the patient button, the system requests a consultation key. If you enter it correctly, the consultation patient data list screen 16 shown in Fig. 16 will be displayed.
患者会員の選択をしていない状態で、新規診察患者ボタン 7— 3を選択すると、 図 1 7のように患者会員 I Dと診察キーの両方を本システムが要求する患者会 員 I D '診察キー要求ウィンドウ 1 7が表示されるので、 これに正しく入力する と、 図 1 6の診察対象患者データ一覧画面 1 6が表示される。  When selecting a new patient button 7-3 without selecting a patient member, the system requests both the patient member ID and the diagnosis key as shown in Figure 17 as shown in Fig. 17. The window 17 is displayed. If you enter it correctly, the screen 16 for the list of patient data to be examined shown in Fig. 16 is displayed.
又、 図 7の医師会員用グローバルメニュー 7には診察終了ボタン 7— 4があり、 これで診察モードを終了し、図 1 5の診察患者一覧(外来)画面 1 5等の診察モー ド開始前画面に戻る。 図 7の医師会員用グ口一パルメニュー 7、 図 9の準医療従事者会員用グ口ーバ ルメニュー 9、 図 1 0の医療機関会員用グローバルメニュー 1 0には、 患者検索 ボタン 7—5, 9 - 3 , 1 0— 5があり、 これにより図 1 2に示す患者検索条件 入力画面 1 2が表示され、 図 2に示す会員情報ファイル 2 _ 1 , 2— 2と、 図 3 に示す医用データ管理ファイル 3に記載の情報による複合検索が実施される。 図 1 2に示す患者検索条件入力欄 1 2— 1に入力される各条件は、行内は AN D条件、各行は O R条件となり、例えば、検索条件の 1行目において、氏名に「山 田」 、 年齢に 「1 0 ~ 2 0」 、 診断に 「糖尿病」 と入力し、 検索条件の 2行目に おいて、 氏名に 「山田」 、 年齢に 「1 0〜2 0」 、 診断に 「胃潰瘍」 と入力して 検索した場合は、 患者会員の氏名に 「山田」 を含み、 かつ、 年齢が 1 0〜2 0歳 で、かつ、診断コメントに「糖尿病」 あるいは「胃潰瘍」の単語を含んだ医用デー タを有する患者会員が抽出される。 Also, in the global menu 7 for physician members in Fig. 7, there is a consultation end button 7-4, which ends the consultation mode, and before the consultation mode such as the consultation patient list (outpatient) screen 15 in Fig. 15 Return to the screen. There is a Patient Search button 7 in Fig. 7 for the pallet menu 7 for physicians, the global menu 9 for quasi-healthcare professional members in Fig. 9 and the global menu 10 for medical institution members 10 in Fig. 10. 5, 9-3, 1 0-5, which displays the patient search condition input screen 12 shown in Fig. 12, and the membership information files 2 _ 1, 2-2 shown in Fig. The compound search is performed using the information described in the medical data management file 3 shown. Each condition entered in the patient search condition input field 12-1 shown in Fig. 12 is an AND condition in a line and an OR condition in each line. For example, in the first line of the search condition, the name "Yamada" Enter the age as “10 to 20”, the diagnosis as “diabetes”, and in the second line of the search condition, enter the name as “Yamada”, the age as “10 to 20”, and the diagnosis as “gastric ulcer” ], The patient member's name contains "Yamada", the age is 10 to 20 years, and the diagnosis comment contains the words "diabetes" or "stomach ulcer". Patient members who have medical data are extracted.
図 7の医師会員用グローバルメニュー 7、 図 8の患者会員のグローバルメ ニュー 8、 図 9の準医療従事者会員用グローバルメニュー 9に共通の機能として、 医用データの新規データ登録ポタン 7— 6, 8 - 4 , 9一 4があり、 これにより 新規の医用データの登録が行われる。  The common functions of the global menu 7 for physician members in Fig. 7, the global menu 8 for patient members in Fig. 8, and the global menu 9 for quasi-healthcare professional members in Fig. 9 include a new data registration button for medical data 7-6, There are 8-4 and 9-1, which register new medical data.
図 7の医師会員用グローバルメニュー 7 , 図 8の患者会員のグローバルメ ニュー 8 , 図 9の準医療従事者会員用グローバルメニュー 9、 図 1 0の医療機関 会員用グローバルメニュー 1 0に共通の機能として、遠隔診断の依頼を受けてく れる医師検索のための医師検索ボタン 7— 7, 8— 5, 9— 5, 1 0— 6があり、 この医師検索ポタンで、 図 2 2に示すような遠隔診断引き受け医師検索画面 2 2 が開かれる。  Global menu for doctor members 7 in Fig. 7, global menu for patient members 8 in Fig. 8, global menu 9 for quasi-healthcare professional members 9 in Fig. 9, and functions common to global menu 10 for medical institution members 10 in Fig. 10 There is a doctor search button 7-7, 8-5, 9-5, 10-6 for searching for a doctor who receives a request for remote diagnosis. This doctor search button is used as shown in Fig. 22. The remote diagnosis underwriting doctor search screen 22 is opened.
図 1 1の研究者会員用グローバルメェユー 1 1には、 医用データ検索ボタン 1 1一 1があり、 このボタンにより、 図 2 8に示す医用データ検索条件入力画面 2 8が開くので、 医用データ検索条件入力欄 2 8— 1に条件を入力し、 検索を実行 する。 図 Ίの医師会員用グローバルメニュー 7には、 遠隔診断ボタン 7— 8があり、 このボタンで、 図 2 6に示す遠隔診断依頼一覧画面 2 6が表示される。 The researcher member's global menu 11 in Fig. 11 has a medical data search button 1 1 1 1. This button opens the medical data search condition input screen 28 shown in Fig. 28. Enter search conditions in the search condition input field 2 8— 1 and execute the search. The global menu 7 for physician members shown in Fig. 7 has remote diagnosis buttons 7-8, which are used to display the remote diagnosis request list screen 26 shown in Fig. 26.
遠隔診断依頼一覧画面 2 6の中から診断を行う患者会員を選択すると、 図 1 8 に示す該当の医用デ一タ詳細閲覧画面 1 8が表示され、 この時のアクセス者 - モード欄 1 8—: Lのモードは 「通常モード」 と表示される。 .  When a patient member to be diagnosed is selected from the remote diagnosis request list screen 26, the corresponding medical data detail browsing screen 18 shown in Fig. 18 is displayed. At this time, the accesser-mode column 18- : L mode is displayed as “Normal mode”. .
図 8に示す患者会員用グローバルメニュー 8には、 アクセス権追加用認証手段 である診察キー (アクセス権追加用パスワード) を変更できる診察キー変更ボタ ン 8— 1があり、 患者会員は診察キー変更ボタンで診察キー変更画面に移動し、 医用データ管理システムの要求に従って、 診察キーを入力する。  The global menu 8 for patient members shown in Fig. 8 has a consultation key change button 8—1 that can change the consultation key (password for adding access right), which is an authentication means for adding access rights. Move to the examination key change screen with the button, and enter the examination key according to the request of the medical data management system.
医用データ管理システムは、 診察キーが真であれば、 新しい診察キーの入力を 要求するので、 新しい診察キーを入力し、 登録ボタンを選択することにより、 診 察キーが変更される。  If the medical examination key is true, the medical data management system will require the entry of a new examination key, so the examination key is changed by entering the new examination key and selecting the register button.
もし、 変更前にシステムが要求した診察キーが偽ならば、 医用データ管理シス テムは新しい診察キーへの変更を認めるが、 不正ァクセスの可能性があるため、 これを記録する事ができる。  If the consultation key requested by the system prior to the change is false, the medical data management system will allow the change to the new consultation key, but this can be recorded due to the possibility of unauthorized access.
患者会員用グローバ Λ /メニュー 8には、 ヮンタイムパスヮード作成ボタン 8— 2 (使い捨て認証手段の作成ボタンの 1例) があり、 このワンタイムパスワード 作成ボタン 8— 2を選択すると、 ワンタイムパスワード作成画面 (図示せず) に 移動する。  There is a one-time password creation button 8-2 (one example of a button for creating a disposable authentication means) on the global / menu 8 for patient members. Move to the password creation screen (not shown).
又、 ワンタイムバスヮードの失効を行うワンタイムパスヮード失効ボタン 8— 3力 Sあり、 患者会員はヮンタイムパスヮード失効ボタン 8— 3でヮンタイムパス ワード失効画面 (図示せず) へ移動し、 ここでパスワードの失効を選択すると、 過去に作成されたワンタイムパスワードは全て失効する。  Also, there is a one-time password expiration button 8-3 for revoking the one-time password, and the patient member moves to the one-time password expiration screen (not shown) with the one-time password expiration button 8-3. If you choose to expire the password here, all the one-time passwords created in the past will expire.
ここでまず、 図 3 5を用いて、 医用データを利用するために医用データ詳細閲 覽画面に到達する経路を示す。 会員は、 ログイン (S 3 5— 1 ) した後、 会員種 別に利用可能な経路で各会員用の医用データ詳細閲覧画面 (例えば患者用は図 1 9、 医師用は図 18) に至る。 例えば、 グローバルメニューの新規診察患者ボタ ンからの経路 (S 35— 2) や遠隔診断ボタンからの経路 (S 35— 3) は医師 会員のみ利用可能であり、 アクセス可能データポタンからの経路 (S 35— 5) や管理責任情報ボタンからの経路( S 35— 6 )は全ての会員で利用可能であり、 新規データ登録ポタンからの経路(S 35-4)は医師会員、準医療従事者会員、 患者会員で利用可能である。 First, the route to reach the detailed medical data view screen for using medical data is shown using FIG. After logging in (S35-1-1), the member can view the detailed medical data screen for each member using a route that can be used for each member (for example, see Fig. 1 for patients). 9. For doctors, see Figure 18). For example, the route from the new consultation patient button in the global menu (S35-2) and the route from the remote diagnosis button (S35-3) are only available to physician members, and the route from the accessible data button (S35-2). 35-5) and the route from the management responsibility information button (S35-6) are available to all members, and the route from the new data registration button (S35-4) is a doctor member and a quasi-medical worker member. Available to patient members.
医師会員が診察として開いた図 18の医用データ詳細閲覧画面 18では、 ァク セス者欄 18-10に医師名が表示され、 診察であることがアクセス者'モード 欄 18— 1に 「診察モード」 と表示され、 診察以外で医用データ詳細閲覧画面 1 8を開いた場合は 「通常モード」 と表示される。  In the medical data details browsing screen 18 in Fig. 18 opened by the doctor member as a medical examination, the doctor's name is displayed in the accessor column 18-10, and the medical examination is indicated in the accessor's mode column 18-1 as the medical examination. Is displayed, and when the medical data details browsing screen 18 is opened other than in the consultation, “Normal mode” is displayed.
図 18の医用データ詳細閲覧画面 18には、不定形データボックス 18— 13 と、診断ポックス 18— 6、コメントボックス 18— 8、紹介ポックス 1 8— 2、 返書ボックス 18— 3の詳細情報が表示される。  On the medical data detail browsing screen 18 shown in Fig. 18, detailed information on the irregular data box 18-13, diagnostic pox 18-6, comment box 18-8, referral pox 18-2, and return box 18-3 is displayed. Is done.
次に、 本発明の医用データ管理システムの使用態様について、 図 1、 図 7、 図 10、 図 15、 図 16、 図 18を参照して説明する。  Next, the manner of use of the medical data management system of the present invention will be described with reference to FIGS. 1, 7, 10, 15, 16, and 18. FIG.
新規患者が、 例えば、 図 1に示す大規模医療機関 1一 15の外来を受診した場 合、 医療機関会員は、 図 10に示すグローバルメニュー 10の受診患者受付ボタ ン 10— 1で受付を行う。  When a new patient receives an outpatient clinic at a large medical institution 1-15 shown in Fig. 1, for example, the medical institution member accepts the patient using the patient reception button 10-1 on the global menu 10 shown in Fig. 10. .
医師会員が、 図 7に示すグローバルメニュー 7の受診患者ボタン 7— 1をク リックすると、 図 1 5に示す診察患者一覧 (外来) 画面 1 5が表示されるので、 診察患者一覧から診察患者を特定し、 図 7の新規診察患者ボタン 7 _ 3をクリツ クすると、 診察キーが要求され、 入カイ直が真ならば、 図 16に示す診察対象患者 データ一覧 16が表示され、 この時からアクセス者'モード欄 16_ 1には 「診 察モード」 と表示される。  When the doctor member clicks the Patient button 7-1 on the global menu 7 shown in Fig. 7, the patient list (outpatient) screen 15 shown in Fig. 15 is displayed. When the patient is identified and the new patient button 7_3 in Fig. 7 is clicked, a medical examination key is requested, and if the input is correct, the patient data list 16 for the medical examination shown in Fig. 16 is displayed and accessed from this time. The “diagnosis mode” is displayed in the user's mode field 16_1.
図 16の診察対象患者データ一覧画面 1 6には、 医師会員が既にアクセス権を 持っている医用データ (管理ファイルに医師会員のアクセス権が記録されている 医用データ) と医師会員が未だアクセス権を取得していない医用データ (管理 ファイルに医師会員のアクセス権が記録されていない医用データ) の両方が表示 される。 The patient data list screen 16 shown in Fig. 16 contains medical data to which the doctor member already has access rights (the access rights of the doctor members are recorded in the management file). Both medical data) and medical data for which the doctor member has not yet obtained access rights (medical data for which the access rights of doctor members are not recorded in the management file) are displayed.
医師会員がアクセス権を取得していない医用データであれば、 診察対象患者 データ一覧画面 1 6のアクセス権欄 1 6— 2に 「未取得」 と表示され、 患者会員 が診察時アクセス権追加制限欄 1 6— 3あるいは遠隔診断時アクセス権追加制 限欄 1 6— 4に示されるアクセス権追加に関する保護として、 「警告」 を設定し ていれば、 アクセス権欄 1 6— 2に、 アクセス権追加制限 「1」 力 「ワンタイ ムパスワードによる保護」 を設定していればアクセス権追加制限 「2」 が表示さ れる。  If the medical member does not have access right to the medical data, the access right column 16-2 of the patient data list screen for examination 16 will be displayed as "Not Acquired", and the patient member will have additional access right at the time of medical examination. If “Warning” is set as protection for the additional access right indicated in column 16-3 or the additional access right column at the time of remote diagnosis, the access right is added to the access right column 16-2. Additional restriction "1" Force If "One-time password protection" is set, access right additional restriction "2" is displayed.
さらに、医師が診察対象患者データ一覧画面 1 6から医用データを選択し、 「医 用データを開く」 ボタン 1 6— 5をクリックし、 図 1 8に示す医用データ詳細閲 覧画面(医師用) 1 8を開くと、以後、医用データ管理システムは、図 7のグロ一 バルメニュー 7の診察終了ボタン 7— 4を選択するまでの処理を 「診察モード」 として認識する。  In addition, the doctor selects medical data from the patient data list screen 16 to be examined, and clicks the “Open medical data” button 16 — 5 to display the detailed medical data viewing screen (for doctors) shown in Figure 18 After opening 18, the medical data management system recognizes the processing up to the selection of the medical examination end button 7-4 in the global menu 7 in FIG. 7 as the "medical examination mode".
「診察モード」 とは、 患者会員の医用データに医師会員等のアクセス権が追加 登録できる状態を意味する。  “Diagnosis mode” means a state in which the access right of the doctor member can be additionally registered in the medical data of the patient member.
次に、 図 1 8に示す医用データ詳細閲覧画面 (医師用) 1 8への新規医用デー タの登録について説明する。  Next, registration of new medical data in the medical data detailed browsing screen (for doctor) 18 shown in FIG. 18 will be described.
例えば、 医師会員が、 図 7に示すグローバルメニューの新規データ登録ポタン For example, a doctor member registers a new data registration button in the global menu shown in Fig. 7.
7— 6をタリックすると、 医用データ管理システムは医用データの新規登録を行 うべき患者会員 I Dと診察キーを要求し、 これらを入力すると診察モードとなり、 患者会員の新たな医用データ番号が作成される。 If you click 7--6, the medical data management system requests the patient member ID and medical examination key for which new medical data is to be registered, and when these are entered, it enters the medical examination mode and a new medical data number is created for the patient member. You.
医用データ管理システムは、 作成した医用データ番号と患者会員の当時の会員 情報を記載し、 不定形データボックス 1 8— 1 3が空白である、 新たな図 1 8に 示すような医用データ詳細閲覧画面 (医師用) 1 8を 「診察モード」 で表示する ので、 不定形データを入力して、 保存ボタン 1 8 _ 4をクリックすると医用デー タがシステムに保存される。 The medical data management system describes the created medical data number and the member information of the patient member at that time, and the amorphous data box 18-13 is blank. Display the screen (for doctors) 1 8 in “Diagnosis mode” So enter the irregular data and click the save button 18_4 to save the medical data to the system.
保存ボタン 1 8— 4をタリックするまでは、 修正が可能であり、 保存ボタン 1 8— 4をタリックせずに、 クローズボックス 1 8— 9をクリックして、 医用デー タ詳細閲覧画面 (医師用) 1 8を蘭じると、 作成された医用データ番号と、 これ に付随する情報は全て破棄される。  Until you tally the save button 18-4, you can make corrections. Without tallying the save button 18-4, click the close box 18-9 to display the detailed medical data screen (for doctors). If you change the value of 18, the created medical data number and all information related to it will be discarded.
保存ボタン 1 8— 4をタリックせず、 医用データ詳細閲覧画面 (医師用) 1 8 を閉じようとした場合は警告が発せられる。  If you try to close the medical data details browsing screen (for doctors) 1 8 without tallying the save button 18-4, a warning will be issued.
この新規医用データへのアクセス権の初期値は新規医用データのアクセス者 欄 1 8— 1 0に表示されている医師 Aと、表示データ欄 1 8— 1 1に表示されて いる患者 aである。  The initial values of the right to access this new medical data are the doctor A displayed in the accessor column 18-10 of the new medical data and the patient a displayed in the display data column 18-11. .
尚、 前記のように、 患者会員以外の会員が、 新規に医用データを登録した場合 に備え、 患者会員が、 予め、 この医用データの診察時アクセス権追加制限、 及び 遠隔診断時アクセス権追加制限の初期値を、 自動登録する機能を装備してもよい。 これは、 患者以外の会員が、 新規に医用データを登録した場合でも、 医用データ の登録直後から、 患者会員のプライバシー保護を可能とするための機能である。 医師会員が、一人の患者会員を診察し終わり、次の患者会員を診察する場合は、 図 7に示す診察終了ポタン 7— 4で診察終了し、 改めて、 例えば図 1 5の診察患 者データ一覧 (外来) 画面 1 5から次の患者会員を選択し、 新規診察患者ボタン 7— 3をクリックし、 次の患者会員の診察キーを入力する。  In addition, as described above, in case a member other than the patient member newly registers medical data, the patient member determines in advance the additional access right at the time of medical examination and the additional access right at the time of remote diagnosis of the medical data. A function for automatically registering the initial value of may be provided. This is a function to protect the privacy of patient members immediately after registration of medical data, even if members other than patients newly register medical data. When a doctor member has finished examining one patient member and examines the next patient member, the doctor ends the consultation with the consultation end button 7-4 shown in Fig. 7, and again, for example, the list of patient data shown in Fig. 15 (Outpatient) Select the next patient member from screen 15 and click the New Patient button 7-3 and enter the next patient member's consultation key.
患者会員が、 医用データの登録を行う場合、 ログイン後に、 図 8の患者会員用 グローバルメニュー 8の新規データ登録ポタン 8— 4をクリックすると、新たな 医用データ番号が作成される。  When a patient member registers medical data, after logging in, he clicks the new data registration button 8-4 in the global menu 8 for patient members shown in Fig. 8, and a new medical data number is created.
医用データ管理システムは、 作成した医用データ番号と患者会員の当時の会員 情報を記録し、 図 1 9に示す不定形データ部分が空白の医用データ詳細閲覧画面 (患者用) 1 9を表示するので、 不定形データを入力し、 最後に保存ボタン 1 9 一 2をクリックすると本システムに保存される。 The medical data management system records the created medical data number and the member information of the patient member at that time, and displays the detailed medical data browsing screen (for the patient) 19 with the amorphous data shown in Figure 19 blank. Enter the irregular data, and finally save button 1 9 Click 1 to save to the system.
保存ボタン 1 9— 2をクリックするまでは、 修正が可能であり、保存をクリ ッ クせずに、医用データ詳細閲覧画面(患者用) 1 9を閉じると作成された医用デー タ番号とこれに付随する情報は全て破棄される。  Until the save button 1 9—2 is clicked, it is possible to make corrections. If you close the detailed medical data view screen (for patients) 19 without clicking save, the created medical data number and this will be displayed. All information associated with is discarded.
一方、 保存ボタン 1 9一 2をタリックせず、 医用データ詳細閲覧画面 1 9を閉 じょうとした場合は警告が発せられるようになっている。  On the other hand, a warning is issued if the medical data details browsing screen 19 is closed without tallying the save button 191-2.
この医用データへのアクセス権の初期値は患者会員のみである。  The initial value of the access right to the medical data is only the patient member.
医用データ詳細閲覧画面 1 8 , 1 9のローカルメニューについて、 図 1 8及び 図 1 9を用いて説明する。  The local menu of the medical data detail browsing screens 18 and 19 will be described with reference to FIGS.
図 1 8の医用データ詳細閲覧画面 (医師用) 1 8には、 ローカルメニューとし て診断追加ボタン 1 8— 5、 コメント追加ポタン 1 8— 7、 医用データコピー ' 加工ボタン 1 8— 1 2、保存ボタン 1 8 _ 4、アクセス権確認ボタン 1 8 _ 2 0、 重要■不要登録ボタン 1 8— 2 1、 遠隔診断依頼ボタン 1 8— 1 7が設けられて おり、 図 1 9の医用データ詳細閲覧画面 (患者用) 1 9には、 ロー力 ^メニュー としてアクセス権追加制限変更ボタン 1 9一 1 2が設けられている。  The medical data details browsing screen (for physicians) in Fig. 18 (for doctors) 18 has the following buttons as local menus: Add diagnosis button 18-5, Add comment button 18-7, Copy medical data 'Process button 18--12, There are a save button 18_4, an access right confirmation button 18_20, an important / unnecessary registration button 1 8—2 1, and a remote diagnosis request button 18—17. The medical data details shown in Fig. 19 are provided. The browsing screen (for patients) 19 has an access right addition restriction change button 1911 as a low power ^ menu.
尚、 アクセス権追加制限変更ボタンは患者会員のみが利用可能である。  The access right addition restriction change button can be used only by patient members.
図 1 8の診断追加ボタン 1 8— 5は、 医師会員のみに許可され、 クリックする と診断ポックス 1 8— 6が追加表示され、 診断名を入力し、 保存ボタン 1 8— 4 をクリックすると診断した医師名と共に医用データ管理システムに登録される。 保存ボタン 1 8— 4をクリックするまでは、 修正が可能であり、 保存をクリッ クせずに、 医用データ詳細閲覧画面 (医師用) 1 8を閉じると本操作で作成され た診断は破棄される。  The Add diagnosis button 1 8—5 in Fig. 18 is only available to physician members. Click it to display additional diagnosis pox 18—6, enter a diagnosis name, and click the Save button 18—4 to diagnose. The registered doctor name is registered in the medical data management system. Until you click the save button 1 8—4, you can make corrections. If you close the medical data details viewing screen (for doctors) 1 8 without clicking save, the diagnosis created by this operation will be discarded. You.
又、 コメント追加ポタン 1 8 _ 7は医師会員、 準医療従事者会員、 患者会員が 利用可能であり、 コメント追加ボタン 1 8— 7をクリックすると、 コメントボッ クス 1 8— 8が追加表示され、 コメントを入力し保存ボタン 1 8— 4をクリック するとコメント登録者名と共に医用データ管理システムに登録される。 前記、保存ボタン 1 8— 4をタリックするまでは、修正が可能であり、例えば、 医師会員が、 保存をクリックせずに、 医用データ詳細閲覧画面 (医師用) 1 8を 閉じると本操作で作成されたコメントは破棄される。 In addition, the comment addition button 18_7 is available to physician members, quasi-healthcare professional members, and patient members. Click the Add comment button 18-7 to display the additional comment box 18-8. Enter a comment and click the save button 1 8—4 to register it in the medical data management system with the comment registrant name. It is possible to make corrections until the save button 18-4 is tickled. For example, if a doctor member closes the medical data details browsing screen (for doctor) 18 without clicking save, this operation will be performed. The created comment is discarded.
又、 医用データのコピー, 加工ポタン 1 8— 1 2は、 医師会員、 準医療従事者 会員、 患者会員、 研究者会員により利用可能であり、 医用データのコピー, 加工 ボタン 1 8— 1 2をクリックすると、 診断ボックス 1 8— 6やコメントボックス 1 8 - 8の情報の無い不定形データのみがコピーされた新たな医用データ詳細 閲覧画面と新たな医用データ番号が作成される。  The medical data copy and processing buttons 18-12 can be used by doctor members, associate medical staff members, patient members, and research members, and the medical data copy and processing buttons 18-12 can be used. When clicked, a new medical data detail browsing screen and a new medical data number are created, in which only the irregular data without the information in the diagnostic boxes 18-6 and comment boxes 18-8 are copied.
ただし、 診察時アクセス権追加制限ボックス 1 8— 1 4、 遠隔診断時アクセス 権追加制限ボックス 1 8— 1 5の、 アクセス権追加に対するアクセス権追加制限 の設定は元の医用データから引き継がれる。  However, the setting of the access right addition restriction box for additional access rights in the access right addition restriction boxes 18 to 14 at the consultation and the access right addition restriction boxes 18 to 15 at the time of remote diagnosis are inherited from the original medical data.
そこで、 コピーされた新規データを編集し、 コメント等を入力した後に保存ボ タン 1 8— 4をタリックすると、 医用データ管理システムに編集後の情報を保存 することができる。  Then, after editing the copied new data, entering a comment, etc., and then clicking the save button 18-4, the edited information can be saved in the medical data management system.
よって、 元の医用データとコピー編集された医用データの二つが医用データ管 理システムに残ることになる。  Therefore, the original medical data and the copy-edited medical data remain in the medical data management system.
この時、 コピー編集された医用データの医用データ種欄 1 8— 1 6は、 初期値 では 「医用データのコピー」 とされ、 このデータへのアクセス権の初期値は作成 者と元の医用データの患者会員となる。  At this time, the medical data type column 18-16 of the medical data copied and edited is initially set to "copy medical data", and the initial value of the access right to this data is the creator and the original medical data. Become a patient member of
アクセス権確認ボタン 1 8— 2 0は、 この医用データにアクセス権をもつ会員 を確認するためのボタンで、 クリックすると図 2 0のアクセス権保持者一覧画面 The access right confirmation button 1 8—20 is a button for confirming the members who have access to this medical data, and when clicked, the access right holder list screen shown in Fig. 20
2 0が表示され、 アクセス権保持者を確認することができる。 20 is displayed, and the holder of the access right can be confirmed.
又、 図 1 8の重要 '不要登録ボタン 1 8— 2 1により、 図 3の重要フラグ 3— Also, the important flag unnecessary button shown in Fig. 3
2 aと不要フラグ 3— 2 bを登録することができ、 例えば、 医用データ詳細閲覧 画面 (医師用) 1 8の中央付近に、 重要フラグ印 1 8— 2 3と不要フラグ印 1 82a and unnecessary flag 3-2b can be registered. For example, important data 1 8—2 3 and unnecessary flag 1 8
_ 2 4が表示されるようになっている。 重要フラグ印 1 8— 2 3は、 会員が全てのデータについて、 自動的に保管責任 を放棄する設定をしている場合(保管条件設定欄 1 8— 2 2に表示される)でも、 該当データに限って保管責任を自動放棄しない印である。 _ 24 is displayed. Important flag 1 8—2 3 indicates that even if the member has set to automatically abandon the storage responsibility for all data (displayed in the storage condition setting column 18—2 2), This is a sign that does not automatically abandon storage liability.
一方、 不要フラグ印 1 8 _ 2 4は、 会員が該医用データを不要と宣言している ことを示す印である。  On the other hand, the unnecessary flag mark 18_24 is a mark indicating that the member has declared that the medical data is unnecessary.
尚、 不要フラグと重要フラグの両方が設定されていた場合、 不要フラグが優先 するものとする。  If both the unnecessary flag and the important flag are set, the unnecessary flag has priority.
又、 図 1 9に示すアクセス権追加制限変更ボタン 1 9一 1 2は、 患者会員に 限つて利用可能な機能ポタンであり、 医用データへのアクセス権追加時のァクセ ス権追加制限を.、 保護無し、 警告設定、 ワンタイムパスワード設定の各状態に変 更するものである。  Also, the access right addition restriction change button 191-12 shown in Fig. 19 is a function button that can be used only for patient members, and is used to restrict access right addition when adding access right to medical data. It changes to each state of no protection, warning setting, and one-time password setting.
各アクセス権追加制限は、 図 1 9の診察時アクセス権追加制限ボックス 1 9一 1 3、 遠隔診断時アクセス権追加制限ボックス 1 9—1 4に表示される。  The additional access right restrictions are displayed in the access right additional restriction boxes 19-1 13 at the time of consultation and the additional access right restriction boxes 19 9-14 at the time of remote diagnosis in Fig. 19.
図 1 9のアクセス権追加制限の変更ボタン 1 9—1 2をタリックすると、 図 2 1のような医用データアクセス権追加制限設定ウィンドウ 2 1が開き、 ラジオボ タン 2 1— 1 , 2 1— 2でアクセス権追加制限を選択でき、 右上のクローズボタ ン 2 1— 3で閉じる。  Clicking the Change Access Rights Addition Restriction Button 1 9—1 2 in Figure 19 opens the Medical Data Access Rights Addition Restriction Setting Window 21 as shown in Figure 21. Radio buttons 2 1— 1 and 2 1— 2 Use to select the additional access right restriction, and close it with the close button 21-3 in the upper right.
尚、 図 1 8の遠隔診断依頼ボタン 1 8— 1 7は、 遠隔診断の依頼を行うボタン である。  The remote diagnosis request buttons 18-17 in Fig. 18 are buttons for requesting remote diagnosis.
遠隔診断に関して、 図 6、 図 7、 図 1 8、 図 2 2、 図 2 3、 図 2 4、 図 2 5、 図 2 6を参照して説明する。  The remote diagnosis will be described with reference to FIGS. 6, 7, 18, 18, 22, 23, 24, 25, and 26.
遠隔診断を行うに当たっては、 医師会員による遠隔診断に関する情報登録、 紹 介宛先 (遠隔診断の依頼先) の抽出、 遠隔診断の依頼、 遠隔診断に対する返書作 成、 遠隔診断に対する評価の実施が行われる。  In conducting the remote diagnosis, doctor members register information on the remote diagnosis, extract the referral destination (request for the remote diagnosis), request the remote diagnosis, create a reply to the remote diagnosis, and evaluate the remote diagnosis. .
医師会員はあらかじめ、 図 6に示すグローバルメニューの会員基本情報ボタン Physician members must first register the basic member information button on the global menu shown in Fig. 6.
6— 2で、 遠隔診断における診療科、 専門領域、 遠隔診断の条件等を登録してお 遠隔診断の依頼者として、 会員が遠隔診断の依頼先を探す場合、 各会員用グ ローバルメニュー 7 , 8, 9, 1 0で説明した医師検索ポタン 7— 7, 8— 5, 9 - 5 , 1 0— 6をクリックし、 図 2 2に示した遠隔診断引き受け医師検索画面 2 2を開く。 In 6-2, register the medical department, specialty area, and conditions for remote diagnosis in remote diagnosis. As a requester for remote diagnosis, when a member searches for a request for remote diagnosis, a doctor search button described in the global menu 7, 8, 9, 10 for each member 7-7, 8-5, 9-5, Click 1 0—6 to open the remote diagnosis underwriting doctor search screen 22 shown in Figure 22.
次に、 氏名、 診療科、 専門領域等の条件を空欄に入力し検索を行い、 検索を実 行すると医師会員の会員情報の登録内容から、 図 2 3に示すような遠隔診断に関 する情報の検索結果である遠隔診断引き受け可能医師一覧画面 2 3力 S得られる。 ここで、 検索された医師データを選択すると、 図 2 4に示すように、 その医師 会員の過去に行った遠隔診断の評価である評価コメントボックス 2 4を確認で さる。  Next, enter the conditions such as name, medical department, specialty field, etc. in the blanks and perform a search.When the search is executed, information related to the remote diagnosis as shown in Fig. 23 is obtained from the registered contents of the doctor member information. A list of doctors who can undertake a remote diagnosis, which is the search result, is obtained. Here, when the searched doctor data is selected, as shown in FIG. 24, the evaluation comment box 24, which is the evaluation of the remote diagnosis performed by the doctor member in the past, can be confirmed.
ここで、 評価コメントボックス 2 4の 「依頼者情報を見る」 ポタン 2 4—1を クリックすると、 図 2 5に示すように依頼者が過去に行った評価に対する医師の 逆評価コメントボックス 2 5も確認できる。  Clicking on “View client information” in the evaluation comment box 2 4 Click on the button 2 4-1. As shown in Figure 25, the doctor's reverse evaluation comment box 2 5 on the client's past evaluations is also displayed. You can check.
このように、 依頼者、 被依頼者同士が、 医用データに対するコメントを評価し 合うことによって、 質の高い医療を実現できることが期待される。  In this way, it is expected that high quality medical care can be realized by the client and the requestee mutually evaluating comments on medical data.
次に、 例えば医師会員が遠隔診断の依頼をする場合は、 図 1 8に示す遠隔診断 を依頼したい医用データの医用データ詳細閲覧画面 (医師用) 1 8を、 これまで 説明した何れかの方法で開く。  Next, for example, when a doctor member requests remote diagnosis, the medical data detailed browsing screen (for doctors) 18 of the medical data to be requested for remote diagnosis shown in Fig. 18 can be displayed using any of the methods described above. Open with
そして、 ローカルメ-ユーの遠隔診断依頼ポタン 1 8— 1 7をクリックすると、 図 2 2に示す遠隔診断引き受け医師検索画面 2 2が表示される。  Then, when the remote diagnosis request button 18-17 of the local menu is clicked, a remote diagnosis acceptance doctor search screen 22 shown in FIG. 22 is displayed.
検索の結果、 図 2 3に示すように遠隔診断引き受け可能医師一覧画面 2 3が表 示され、 この中から遠隔診断を依頼したい医師を選択する。  As a result of the search, a list 23 of doctors who can accept remote diagnosis is displayed as shown in FIG. 23, and a doctor to request a remote diagnosis is selected from the list.
依頼医師を選択すると、 図 1 8の医用データ詳細閲覧画面 1 8に戻り、 この時 紹介者 (依頼者) と紹介宛先 (被依頼者) が自動入力された紹介ボックス 1 8— 2と返書ボックス 1 8— 3が作成され、依頼者は紹介の内容を紹介ボックス 1 8 一 2に記入する。 When the requesting doctor is selected, the screen returns to the medical data details browsing screen 18 shown in Fig. 18 where the referrer (requester) and referral address (recipient) are automatically entered with the referral box 18-2 and the return box. 1 8—3 is created, and the requester introduces the contents of the referral box 1 8 Fill in 1.
保存ボタン 1 8— 4をクリックすると、 紹介ボックス 1 8— 2の内容が医用 データ管理システムに保存され、 図 3に示す該医用データの管理ファイルのァク セス権記録領域 3— 2に、 被依頼者の会員 I Dが追加記録されると共に、 遠隔診 断の依頼が宛先へ通知される。  When the save button 18-4 is clicked, the contents of the introduction box 18-2 are stored in the medical data management system, and the access right recording area 3-2 of the medical data management file shown in Fig. 3 is received. The requester's member ID is additionally recorded, and a request for remote diagnosis is sent to the destination.
図 1 8の保存ポタン 1 8— 4をクリックするまでは、 修正が可能であり、 保存 ボタン 1 8— 4をクリックせずに、 医用データ詳細閲覧画面 (医師用) 1 8を閉 じょうとすれば警告が表示され (図示せず) 、 警告を無視して医用データ詳細閲 覧画面 (医師用) 1 8を閉じると、 作成された紹介は破棄される。  Until you click the save button 1 8—4 in Fig. 18, you can make corrections. Without clicking the Save button 1 8—4, close the medical data details viewing screen (for doctors) 18 If a warning is displayed (not shown), and the warning is ignored and the detailed medical data viewing screen (for doctors) 18 is closed, the created referral is discarded.
遠隔診断の被依頼者の医師は、 図 6の口グイン後初期画面のお知らせ欄 6— 6 で遠隔診断の依頼があることを確認できる。  The doctor of the remote diagnosis requester can confirm that there is a request for remote diagnosis in the notification field 6-6 on the initial screen after mouth gushing in Fig. 6.
被依頼者は図 7に示すグローバルメニュー 7の遠隔診断ポタン 7 _ 8をク リックし、 図 2 6の遠隔診断の依頼リストから返書を作成したい医用データをク リックして選択する。  The requestee clicks the remote diagnosis button 7_8 in the global menu 7 shown in Fig. 7, and clicks and selects the medical data for which a reply is to be created from the remote diagnosis request list in Fig. 26.
このとき、 該医用データに対する、 被依頼者のアクセス権は、 依頼者により、 追加されているので、図 1 8の医用データ詳細閲覧画面(医師用) 1 8が通常モー ドで表示される。  At this time, since the requester's access right to the medical data has been added by the requester, the medical data detailed browsing screen (for doctor) 18 in FIG. 18 is displayed in the normal mode.
又、 図 1 8の医用データ詳細閲覧画面 (医師用) 1 8には、 紹介ボックス 1 8 _ 2と返書ボックス 1 8— 3が遠隔診断依頼者により作成されているので、 返書 ボックス 1 8— 3に遠隔診断による所見を記入し、保存ボタン 1 8— 4をクリツ クして保存する。  In the medical data details browsing screen (for doctors) 18 in Fig. 18, the introduction box 18 _ 2 and the return box 18-3 are created by the remote diagnosis requester, so the return box 18- Enter the findings from the remote diagnosis in 3 and click the save button 18-4 to save.
保存ボタン 1 8— 4をタリックするまでは、 修正が可能であり、保存ボタン 1 8— 4をクリックせずに、 医用データ詳細閲覧画面 (医師用) 1 8を閉じると本 操作で作成されたコメントは破棄される。  Until you click the save button 18-4, you can make corrections. If you do not click the save button 18-4, the detailed medical data view screen (for doctors) 1 8 Comments are discarded.
保存せずに医用データ詳細閲覧画面 (医師用) 1 8を閉じようとすれば警告が 表示されるようになっており、 保存がなされると、 依頼者へ遠隔診断の返書の入 力が完了したことを通知する。 If you try to close the medical data details view screen (for doctors) without saving, a warning is displayed. When saving is completed, return a remote diagnosis return to the client. Notify that the force has been completed.
遠隔診断の依頼者は、 図 6の口グイン後初期画面 6のお知らせ欄 6— 6で、 遠 隔診断の返書が作成されたことを確認でき、 次の遠隔診断に対する評価の入力が 可能になる。  The requester of the remote diagnosis can confirm that the remote diagnosis return has been created in the notification area 6-6 on the initial screen 6 after the mouth login in Fig. 6 and input the evaluation for the next remote diagnosis. .
次に、 遠隔診断に対する評価■逆評価について、 図 6、 図 18、 図 21、 図 2 7を参照して説明する。  Next, evaluation of remote diagnosis and reverse evaluation will be described with reference to FIGS. 6, 18, 21, and 27. FIG.
遠隔診断が被依頼者によりなされた後、 依頼者が図 18の医用データ詳細閲覧 画面 (医師用) 18を開くと、 返書ボックス 18— 3に返事が記入されている。 紹介ボックス 18— 2には、 その横に評価ボタン 18—18が準備されている 、 この評価ボタン 18— 18は該遠隔診断の依頼者のみに有効である。  After the remote diagnosis has been performed by the client, the client opens the medical data details browsing screen (for doctors) 18 in Fig. 18 and the reply is entered in the reply box 18-3. An evaluation button 18-18 is provided next to the introduction box 18-2. The evaluation button 18-18 is valid only for the client of the remote diagnosis.
評価ボタン 1 8— 1 8をクリックすると、 図 27に示すような評価 ·逆評価 ウィンドウ 27が開く。  Clicking the Evaluate button 18-18 will open the Evaluate / Reverse Evaluate window 27 as shown in Figure 27.
評価 ·逆評価ウィンドウ 27には、 依頼者記入欄として遠隔診断の返書に対す る評価コメント欄 27 _ 1と、 評価 5段階欄 27-2がある。  Evaluation · In the reverse evaluation window 27, there are a requester's entry field, an evaluation comment field 27 _ 1 for the return of the remote diagnosis, and a five-level evaluation field 27-2.
遠隔診断の依頼者は評価コメント欄 27 _ 1と、評価 5段階欄 27-2に評価 を記入し、 登録ポタン 27_ 3をクリックすると登録され、 被依頼者に対して、 評価が追加されたことが通知される。  The requester of the remote diagnosis enters the evaluation in the evaluation comment column 27 _ 1 and the evaluation 5 stage column 27-2 and clicks the registration button 27 _ 3 to register, and the evaluation is added to the requestee Will be notified.
遠隔診断の被依頼者は同様に、遠隔診断に対する評価が追加されたことを図 6 のお知らせ欄 6-6で通知される。  Similarly, the requestee of the remote diagnosis is notified in the notification section 6-6 of Fig. 6 that the evaluation for the remote diagnosis has been added.
被依頼者は、 図 18の医用データ詳細閲覧画面 (医師用) 18から逆評価ボタ ン 18— 19をクリックし、 図 27に示す評価■逆評価ウインドウ 27を開き、 まず、依頼者が記入した遠隔診断に対する評価コメント欄 27— 1と評価 5段階 欄 27— 2を見て、 これらの結果を公開して良いか否かを判断し、 チェックボッ タス 27— 4, 27— 5にチェックを入れ (あるいは入れず) 、 登録ボタン 27 一 6をクリックして登録する。  The requester clicks the reverse evaluation button 18-19 from the medical data detail browsing screen (for doctors) 18 in Fig. 18 to open the evaluation ■ reverse evaluation window 27 shown in Fig. 27. Check the evaluation comment column for remote diagnosis 27-1 and the 5-grade evaluation column 27-2 to determine whether these results can be disclosed and check the check boxes 27-4 and 27-5. (Or do not include), click the register button 27 1 6 to register.
又、 受け取った評価に対する妥当性を吟味し、 逆評価コメント欄 27— 7と逆 評価 5段階欄 27-8を入力できる。 In addition, examine the validity of the received evaluation, and reverse to the negative evaluation comment column 27-7 Evaluation You can enter a 5-level column 27-8.
入力後に登録ポタン 27—9をクリックすると、 登録と共に逆評価がなされた こと力 依頼者に通知される。  Clicking on the registration button 27-9 after inputting will inform the client that the evaluation has been completed along with the registration.
同様にして、 依頼者は被依頼者が行った逆評価の通知を受けて、 評価'逆評価 ウィンドウ 27を開き、 逆評価の内容を吟味し、 この内容を公開する場合は チェックボックス 27— 10, 27-1 1にチェックを入れ、 登録ボタン 27— 12をクリックし登録することができる。  In the same manner, the client receives the notification of the negative evaluation performed by the requestee, opens the Evaluation 'Reverse Evaluation window 27, examines the details of the negative evaluation, and checks the check box 27–10 to publish the details. , 27-1 1 Check the box and click the register button 27-12 to register.
次に、 医用データの保護に関して、 図 1、 図 1 9、 図 29、 図 30を参照して 説明する。  Next, the protection of medical data will be described with reference to FIGS. 1, 19, 29, and 30. FIG.
まず、 患者会員は、 医用データに対するアクセス権追加制限を行うため、 図 1 9の医用データ詳細閲覧画面 (患者用) 1 9のローカルメニューのアクセス権追 加制限変更ポタン 19— 12を使用して、 「保護無し」 、 「警告」 、 「ワンタイ ムパスヮードによる保護」 のアクセス権追加制限を設定する。  First, the patient member uses the additional access right change restriction buttons 19-12 on the local menu in Fig. 19 to view the medical data details browsing screen (for patients) in Fig. 19 to restrict additional access rights to medical data. , "No protection", "Warning", and "One-time password protection" set additional access right restrictions.
患者会員は、 ワンタイムパスワード (使い捨て認証手段) を図 29のフローに 基づいて作成できる。 先ず、 患者会員は、 会員 I Dとパスワードを入力し、 医用 データ管理システムにログインし(S 29— 1)、患者会員用グローバルメニュー を表示させ (S 29— 2) 、 ワンタイムパスワード作成ボタンを選択する (S 2 9-3) 。  Patient members can create one-time passwords (disposable authentication means) based on the flow in Figure 29. First, the patient member enters the member ID and password, logs in to the medical data management system (S29-1), displays the global menu for patient members (S29-2), and selects the one-time password creation button. (S29-3).
ワンタイムパスヮードの作成方法は 2方法から選択できるが (S 29 - 4) 、 例えば、 作成するワンタイムパスワードが、 保護しているデータの全てに共通し て利用可能な汎用ワンタイムパスワードであれば (S 29— 5) 、 現在有効な汎 用的ワンタイムパスワードが一覧表示され (S 29— 6) 、 追加作成が必要なら 追加作成数を入力すると (S 29— 7, S 29- 8) 、 本システムが汎用ワンタ ィムパスワードを作成し、 有効期限を設定して (S 29— 9) 、 患者の会員基本 情報ファイルにワンタイムパスワードを登録し (S 29— 10) 、 その後、 作成 された汎用ワンタイムパスワードが画面に表示される (S 29— 1 1) 。 一方、 作成するワンタイムパスヮードが、 特定の医用データを保護する特異的 ワンタイムパスワードであれば (S 2 9— 1 2 ) 、 医用データの中からワンタイ ムパスワードによる保護を設定している医用データの一覧から(S 2 9— 1 3 )、 医用データを選択すると (S 2 9— 1 4 ) 、 現在有効な特異的パスヮードが表示 されるので (S 2 9— 1 5 ) 、 追加作成が必要なら追加作成数を入力すると (S 2 9 - 1 6 , S 2 9 - 1 7 ) 、 特異的ワンタイムパスワードが作成され (S 2 9 - 1 8 ) , 該医用データの管理ファイルに登録され (S 2 9— 1 9 ) 、 作成され た特異的ワンタイムパスワードが画面に一覧表示される (S 2 9— 2 0 ) 。 さらに、 これらのワンタイムパスヮードの作成が図 1に示すデータ取込参照端 末 1一 1 3によるならば、 作成されたワンタイムパスヮ一ドはプリンタで印刷で きるようになっており、 又、 携帯電話やその他のパームトップ型の移動体通信装 置でインターネットに接続してワンタイムパスワードを作成した場合は、機器の モニター画面に表示されるものとなっている。 There are two methods for creating a one-time password (S29-4) .For example, the one-time password to be created is a general-purpose one-time password that can be used in common for all protected data. If there is any (S29-5), a list of currently valid general-purpose one-time passwords is displayed (S29-6). If additional creation is required, enter the number of additional creations (S29-7, S29-8) The system creates a general-purpose one-time password, sets an expiration date (S29-9), registers the one-time password in the patient member basic information file (S29-10), and then creates the password. The displayed general-purpose one-time password is displayed on the screen (S29-11). On the other hand, if the one-time password to be created is a specific one-time password that protects specific medical data (S29-1-2), the one-time password protection is set from the medical data. From the list of medical data (S29—13), select the medical data (S29—14), and the currently valid specific password is displayed (S29—15). If necessary, enter the number of additional creations (S 29-16, S 29-17), a specific one-time password will be created (S 29-18), and register it in the medical data management file Then, the created one-time password is listed on the screen (S29—20) (S29—19). Furthermore, if the creation of these one-time passcodes is based on the data acquisition reference terminal 111 shown in FIG. 1, the created one-time passcodes can be printed by a printer. When a one-time password is created by connecting to the Internet using a mobile phone or other palmtop mobile communication device, it is displayed on the monitor screen of the device.
これらのワンタイムパスワードの作成は、 上記のように本システムが乱数等を 利用して自動作成してもよく、利用会員自らが任意の文字列を選んで作成するよ うにしてもよレ、。  As described above, the one-time password may be automatically created by the system using random numbers or the like, or may be created by the user himself selecting an arbitrary character string. .
患者会員により、 アクセス権追加に関する、 「保護無し」 、 「警告」 、 「ワン タイムパスワードによる保護」 の三段階のァクセス権追加制限が設定されうるの で、 診察時に医用データ詳細閲覧画面を開く場合や、 遠隔診断時にはアクセス権 追加制限に対する処理が行われる。  Patient members can set three additional access right restrictions, `` No protection, '' `` Warning, '' and `` One-time password protection, '' for additional access rights. Also, at the time of remote diagnosis, processing for additional access right restriction is performed.
図 1 6の診察時アクセス権追加制限欄 1 6— 3には、 図 3の医用データ管理 ファイル 3の基本部 3— 1における診察時アクセス権追加制限 (基本部のデータ 例 3— 3における診察時アクセス権追加制限) の値が表示され、 遠隔診断時ァク セス権追加制限欄 1 6— 4には、 図 3の医用データ管理ファイル 3の基本部 3 _ 1における遠隔診断時アクセス権追加制限 (基本部のデータ例 3— 3における遠 隔診断時ァクセス権追加制限) の値が表示される。 診察時のアクセス権追加制限処理は、 図 30に示すフローに基づいてなされる。 医師会員は会員 I Dとパスワードを入力し、 医用データ管理システムにログイン し(S 30_ 1)、患者会員を選択し、新規診察患者ポタンをクリックすると (S 30-2) 、 医用データ管理システムから診察キーが要求されるので、 患者会員 から診察キーを入手し入力する (S 30— 3) 。 診察キーが間違っていると (S 30-4) 、 エラーを表示し、 処理は終了となる (S 30— 8) 。 診察キーが正 しい場合には (S 30— 4) 、 診察モードが確定し、 診察対象患者データ一覧画 面 16を表示する (S 30— 5) 。 医師会員は、 診察対象患者データ一覧画面 1 6でアクセスしたい医用データを選択し、 「医用データを開く」 ポタン 16— 5 をクリックした場合 (S 30— 6) 、 選択した医用データのアクセス権を既に医 師会員が持っているならば(S 30— 7)、図 18の医用データ詳細閲覧画面(医 師用) 18が開く (S 30_ 19) 。 The additional access right column at the time of consultation 16-3 in Fig. 16 contains the additional access right at the time of consultation in the basic part 3-1 of the medical data management file 3 shown in Fig. 3 (Examination of data in the basic part 3-3 The additional access right at remote diagnosis is displayed in the additional access right column at the time of remote diagnosis in the basic part 3 _ 1 of the medical data management file 3 in Fig. 3. Displays the value of Restriction (Restriction on addition of access right at remote diagnosis in Data Example 3-3 of Basic Part). The access right addition restriction process at the consultation is performed based on the flow shown in FIG. The doctor member enters the member ID and password, logs in to the medical data management system (S30_1), selects a patient member, and clicks on the new consultation patient button (S30-2). Since a key is required, obtain and enter the consultation key from the patient member (S30-3). If the consultation key is wrong (S30-4), an error is displayed and the process ends (S30-8). If the examination key is correct (S30-4), the examination mode is determined and the examination target patient data list screen 16 is displayed (S30-5). The doctor member selects the medical data to be accessed on the examination target patient data list screen 16 and clicks the “Open medical data” button 16-5 (S30-6), and grants the access right to the selected medical data. If the doctor member already has it (S30-7), the medical data details browsing screen (for doctor) 18 in FIG. 18 opens (S30_19).
選択した医用データが、 医師会員が未だアクセス権を取得していない医用デー タであった場合 (S 30— 7) 、 患者会員が設定した診察時アクセス権追加制限 によって、 以下に示すように処理がなされる。  If the selected medical data is medical data for which the access right has not yet been obtained by the doctor member (S30-7), the processing is performed as shown below according to the additional access right at the time of the examination set by the patient member. Is made.
図 16に示す診察対象患者データ一覧画面 16の診察時アクセス権追加制限 欄 16— 3に 「0」 と表示されている場合は (S 30— 9) 、 患者会員が診察時 のアクセス権追加に対して何も制限していないことを示すので、 この医用データ の管理ファイルに医師会員のアクセス権を追加記録し(S 30_ 18)、医用デー タ詳細閲覧画面 (医師用) 18で医用データを表示する (S 30— 1 9) 。  If “0” is displayed in the additional access right column at the time of consultation 16-3 on the list 16 of patient data to be examined shown in Fig. 16 (S30-9), the patient member can add the access right at the time of the consultation. Since this indicates that there is no restriction, the access right of the physician member is additionally recorded in the medical data management file (S30_18), and the medical data is browsed on the detailed medical data browsing screen (for the physician) 18. It is displayed (S30-19).
又、 図 16に示す診察対象患者データー覽画面 16の診察時アクセス権追加制 限欄 16— 3に 「1」 と表示されている場合は (S 30— 10) 、 医用データに アクセスしょうとしている会員に対し、 患者会員が、 該医用データへのアクセス 権追加時に警告を行うように設定していることを示し、 例えば 「この医用データ を開き、 アクセス権を得たことを患者会員に通知します」 等の、 閲覧したことが 患者会員に通知される旨の表示がなされる (S 30— 1 1) 。 警告後、 医師会員が、 了承に関する入力で (S 30— 12) 、 警告を了承しな い場合には (S 30— 13) 、 閲覧不可能と表示され (S 30— 14) 、 図 16 の診察対象患者データ一覧画面 16に戻る。 In addition, if “1” is displayed in the access right addition restriction column 16-3 on the examination target patient data list screen 16 shown in FIG. 16 (S30-10), the user is trying to access medical data. Indicates to the member that the patient member has set a warning when the access right to the medical data is added.For example, `` Open this medical data and notify the patient member that the access right has been obtained. Is displayed to notify the patient member of the browsing (S30-11). After the warning, the physician member makes an input regarding approval (S30-12). If the warning is not acknowledged (S30-13), it is displayed as not available for viewing (S30-14). The screen returns to the patient data list screen 16 for examination.
一方、 医師会員が、 了承に関する入力 (S 30— 12) で、 警告を了承する場 合には(S 30— 13)、患者会員にその医師会員がアクセスした旨を通知し(S 30-17) 、 該医用データの管理ファイルに医師会員のアクセス権を追加記録 し (S 30— 18) 、 図 18の医用データ詳細閲覧画面 18で医用データを表示 する (S 30— 19) 。  On the other hand, if the doctor member approves the warning (S30-13) in the input for approval (S30-12), the doctor member notifies the patient member that the doctor member has accessed (S30-17). Then, the access right of the doctor member is additionally recorded in the medical data management file (S30-18), and the medical data is displayed on the medical data detailed browsing screen 18 of FIG. 18 (S30-19).
又、 図 16に示す診察対象患者データ一覧画面 16の診察時アクセス権追加制 限欄 16— 3に「2」と表示されている場合は、診察時アクセス権追加制限が「◦」 でも 「1」 でもないので (S 30— 9, S 30— 10) 、 患者会員がアクセス権 の追加に対して「ワンタイムパスヮードによる保護」を設定していることを示し、 「この医用データを開き、 アクセス権を得るにはワンタイムパスヮードが必要で す」 と表示されるので、 医師会員は、 患者会員からワンタイムパスワードを入手 し入力しなければならず (S 30- 1 5) 、 そのワンタイムパスワードが有効な 場合は(S 30—16)、患者会員にその医師会員がアクセスした旨を通知し(S 30-17) 、 医用データ管理ファイルに医師会員のアクセス権を追加記録する と共に (S 30— 18) 、 医用データ詳細閲覧画面 18で医用データを表示する (S 30— 19) 。  In addition, if “2” is displayed in the additional access right column at examination 16-3 on the patient data list screen 16 for examination shown in FIG. 16, even if the additional access right at examination is “◦”, “1” is displayed. (S 30-9, S 30-10), which indicates that the patient member has set “one-time password protection” for the additional access right, and “Open this medical data”. , A one-time password is required to gain access rights. "Is displayed, and the physician member must obtain and enter a one-time password from the patient member (S30-15), If the one-time password is valid (S30-16), notify the patient member that the physician member has accessed (S30-17), and additionally record the access right of the physician member in the medical data management file. With (S30-18), medical data details browsing screen The medical data is displayed at 18 (S30-19).
次に、 遠隔診断依頼時のアクセス権追加制限を処理する場合について、 図 31 のフローに基づいて説明する。 医師会員は会員 I Dとパスワードを入力し、 医用 データ管理システムにログインし (S 31— 1) 、 患者会員を選択すると (S 3 1-2) 、 診察対象患者データ一覧画面 16が通常モードで表示される。 このと き、 アクセス者'モード欄 16— 1に 「通常」 と表示される (S 31— 3) 。 医 師会員は、 診察対象患者データ一覧画面 16でアクセスしたい医用データを選択 し、 「医用データを開く」ボタン 16— 5をタリックした場合、選択した医用デー タのアクセス権を医師会員が持っていなければ (S 31-5) 、 本システムはァ クセス不可と表示し(S 31— 6)、処理は終了する (S 31— 7)。該医用デー タのアクセス権を既に医師会員が持っているならば (S 31— 5) 、 図 18の医 用データ詳細閲覧画面 (医師用) 18が開く (S 31— 8) 。 Next, the case of processing the access right addition restriction at the time of remote diagnosis request will be described with reference to the flow of FIG. The doctor member enters the member ID and password, logs in to the medical data management system (S31-1), selects a patient member (S31-2), and the patient data list screen 16 to be examined is displayed in the normal mode. Is done. At this time, “Normal” is displayed in the accessor 'mode column 16-1 (S31-3). When the medical member selects the medical data to be accessed on the examination target patient data list screen 16 and then clicks the “Open medical data” button 16-5, the selected medical data is displayed. If the doctor member does not have the access right of the doctor (S31-5), the system displays that the access is not allowed (S31-6), and the process ends (S31-7). If the doctor member already has access to the medical data (S31-5), the medical data details browsing screen (for doctor) 18 in FIG. 18 is opened (S31-8).
図 18の医用データ詳細閲覧画面 18が表示された後(S 31一 8)、医用デー タを遠隔診断で紹介する場合、 ローカルメニューの遠隔診断依頼ボタン 18— 1 7をクリックすると(S 31— 9)、患者会員が該医用データに対して設定した、 図 16の診察対象患者データ一覧画面 16の遠隔診断時アクセス権追加制限欄 16— 4に表示された値により、 以下のように処理が分かれる。  After the medical data details browsing screen 18 shown in Fig. 18 is displayed (S31-18), to introduce the medical data by remote diagnosis, click the remote diagnosis request button 18—17 in the local menu (S31— 9) According to the value set by the patient member for the medical data and displayed in the access right additional restriction column 16-4 at the time of remote diagnosis on the examination target patient data list screen 16 in Fig. 16, the following processing is performed. Split.
患者会員が、 遠隔診断時アクセス権追加制限欄に、 特に制限の無いことを示す 「0J を設定しているならば (S 3 1—; L 0) 、 遠隔診断を受諾可能な医師会員 の一覧が表示 (図 23) されるので (S 3 1— 19) 、 遠隔診断を依頼する医師 会員を選択すれば (S 31— 20) 、 医用データの管理ファイルに被依頼者とな る医師会員のアクセス権が追加され (S 31-21) 、 その後、 被依頼者となる 医師会員に遠隔診断依頼が通知される (S 31— 22) 。  If the patient member has set “0J” (S 31-; L 0), which indicates that there is no particular restriction, in the remote diagnosis access right additional restriction column, a list of doctor members who can accept remote diagnosis Is displayed (Fig. 23) (S31-19), and if a doctor member requesting a remote diagnosis is selected (S31-20), the doctor member who is the requestee is added to the medical data management file. The access right is added (S31-21), and then the requesting doctor member is notified of the request for remote diagnosis (S31-22).
一方、 患者会員が図 16の診察対象患者データ一覧画面 16の遠隔診断時ァク セス権追加制限欄 16— 4に、 警告を行うことを示す 「1」 を設定しているなら ば (S 31— 1 1) 、 依頼したことが患者会員に通知される旨、 例えば、 「この 医用データを、 遠隔診断依頼したことが患者会員に通知されます」 と警告が表示 される (S 31— 1 2) 。 了承に関する入力で (S 3 1— 13) 、 会員が遠隔診 断依頼を患者会員に通知することを了承しなければ (S 31— 14) 、 遠隔診断 依頼不可能と表示され (S 3 1_ 1 5) 、 図 18の医用データ詳細閲覧画面 18 民る。  On the other hand, if the patient member sets “1” indicating that a warning is to be issued in the access right addition restriction column 16-4 at the time of remote diagnosis on the patient data list screen for examination 16 in FIG. 16 (S31) — 1 1) A warning is displayed to the effect that the request has been sent to the patient member, for example, “The patient member will be notified that this medical data has been requested for remote diagnosis” (S31—1 2) ). If the member does not approve the notification of the request for remote diagnosis to the patient member (S31-14), the request for remote diagnosis is displayed (S31-1_1). 5) The medical data details browsing screen shown in Fig. 18.
会員が、遠隔診断依頼を患者会員に通知することを了承すれば(S 31- 14), 患者会員にその会員が遠隔診断を依頼した旨を通知し (S 31— 18) 、 遠隔診 断を受諾可能な医師会員の一覧を表示し (S 31— 19) 、 遠隔診断を依頼する 医師会員を選択すると (S 31— 20) 、 医用データの管理ファイルに医師会員 のアクセス権を追加記録し (S 31— 21) 、 医師会員に遠隔診断の依頼を通知 して (S 31 _ 22) 、 処理が終了となる。 If the member approves the notification of the remote diagnosis request to the patient member (S31-14), the member member is notified that the member has requested the remote diagnosis (S31-18), and the remote diagnosis is performed. Display the list of acceptable doctor members (S31-19) and request remote diagnosis When a doctor member is selected (S31-20), the access right of the doctor member is additionally recorded in the medical data management file (S31-21), and a request for remote diagnosis is sent to the doctor member (S31_22). ), The process ends.
さらに、 患者会員が、 図 16の診察対象患者データ一覧画面 16の遠隔診断時 アクセス権追加制限欄 16— 4に、ワンタイムパスワードによる保護を示す「2」 を設定しているならば (S 31— 10, S 31— 1 1) 、 「この医用データに対 して遠隔診断を依頼するためには、ワンタイムパスワードが必要です」と表示し、 患者会員からワンタイムパスワードを入手し入力し (S 31— 16) 、 ワンタイ ムパスワードが有効である場合のみ (S 31— 17) 、 患者会員にその他の会員 が遠隔診断を依頼した旨を通知し (S 3 1— 18) 、 遠隔診断を依頼する医師会 員を選択すると (S 31—20) 、 医用データの管理ファイルに医師会員のァク セス権を追加記録し(S 31— 21)、医師会員に遠隔診断の依頼を通知して(S 31-22) 、 処理が終了となる。  Furthermore, if the patient member sets “2” indicating protection by a one-time password in the access right addition restriction column 16-4 during remote diagnosis on the patient data list screen for examination 16 in FIG. 16 (S31) — 10, S 31— 1 1), "In order to request a remote diagnosis for this medical data, a one-time password is required" is displayed, and a one-time password is obtained from the patient member and entered ( Only when the one-time password is valid (S31-17), the patient member is notified that the other member has requested remote diagnosis (S31-18), and the remote diagnosis is requested only when the one-time password is valid (S31-17). When a doctor member to be selected is selected (S31-20), the access right of the doctor member is additionally recorded in the medical data management file (S31-21), and a request for remote diagnosis is sent to the doctor member (S31-21). S31-22), the process ends.
このように、本発明の医用データ管理システムが広域ネットワークに応用され た場合にも、 患者会員はアクセス権追加についてコントロールできるので、 安全 に遠隔診断を実現することができる。  As described above, even when the medical data management system of the present invention is applied to a wide area network, the patient member can control the addition of the access right, so that remote diagnosis can be safely realized.
次に、 本システムにおける、 医用データの研究利用について図 1 1, 図 1 9, 図 28を参照して説明する。  Next, the research use of medical data in this system will be described with reference to FIGS.
患者会員は、 医用データを研究利用に公開する意思があった場合、 図 1 9で示 した会員基本情報ボタン 6— 2で開かれる会員情報設定画面 (図示せず) で、 医 用データ研究用公開チェックボックス (図示せず) にチェックを入れる。  If the patient member intends to release the medical data for research use, the member information setting screen (not shown) opened with the member basic information button 6-2 shown in Fig. 19 will be displayed. Check the public check box (not shown).
医用データ研究用公開チェックボックスにチェックがない場合、 該患者会員の 全ての医用データは公開されず、 チェックがある場合には、 生年月日、 住所、 性 別を個別に公開するか否カ^!択できる。  If there is no check in the Public check box for medical data research, all medical data of the patient member will not be published, and if there is a check, the date of birth, address and gender will be disclosed individually. ! You can choose.
又、 医用データ詳細閲覧画面 (患者用) 19において、 公開しても良い不定形 データ用研究公開チェックボックス (患者用) 19— 3をチェックすると、 医用 データ種、 一覧コメントを含む不定形データの公開が可能となる。 Also, on the medical data detail browsing screen (for patients) 19, if you check the check box for public research for indefinite data (for patients) 19-3, Disclosure of irregular data including data types and list comments becomes possible.
さらに、 診断ボックス用研究公開チェックボックス (患者用) 1 9— 4、 コメ ントボックス用研究公開チェックボックス (患者用) 1 9— 5, 1 9— 6、 紹介 ボックス用研究公開チェックボックス (患者用) 1 9— 7をチェックすることに より、 個別に公開の意思を決定できる。  In addition, the research open check box for the diagnostic box (for patients) 1 9-4, the research open check box for the comment box (for patients) 1 9-5, 1 9-6, the research open check box for the referral box (for patients) By checking 1 9—7, you can decide whether to make it public.
尚、 これらの研究用公開チェックボックスは、 患者会員のみ変更できる。  Note that these research public check boxes can only be changed by patient members.
医用データの研究公開に際し、 診断、 コメント、 紹介及び返書を登録した会員 は、 自己作成データの研究公開の意思を登録でき、 診断ボックス用研究公開 チェックボックス (登録者用) 1 9一 8、 コメントボックス用研究公開チェック ボックス (登録者用) 1 9— 9 , 1 9一 1 0、 紹介ボックス用研究公開チェック ボックス (登録者用) 1 9— 1 1をチェックすることで、 研究公開可の意思を登 録する。  Members who have registered their diagnoses, comments, referrals, and replies when releasing their research on medical data can register their willingness to release their research on self-created data. Check box for research publication for box (for registrants) 1 9—9, 1 9-11, Check box for research publication for introduction box (for registrants) 1 9—11 1 Register
この場合、 診断ボックス、 コメントボックス、 紹介ボックスは、 患者会員と、 作成者の両者が公開の意思を表明したもののみ公開される。  In this case, only the diagnosis box, comment box, and referral box will be made public if both the patient member and the creator have indicated their intention to make it public.
以上の研究用医用データの登録を受けて、研究者会員の医用データ利用が可能 となる。  With the above-mentioned registration of medical data for research, medical data of research members can be used.
研究者会員は、 図 1 1に示す研究者会員用グローバルメニュー 1 1の医用デー タ検索ボタン 1 1一 1をタリックすると、 図 2 8に示す医用データ検索条件入力 画面 2 8が表示される。  When the researcher member clicks the medical data search button 1 1 1 1 of the researcher member's global menu 11 shown in Fig. 11, the medical data search condition input screen 28 shown in Fig. 28 is displayed.
医用データ検索条件入力画面 2 8で、 例えば、 検索条件の 1行目において、 地 域に 「鹿児島県」 、 年齢に 「1 0〜2 0」 、 診断に 「糖尿病」 と入力し、 検索条 件の 2行目において、 地域に 「鹿児島県」 、 年齢に 「1 0 ~ 2 0」 、 診断に 「胃 潰瘍」 と入力して検索した場合は、 患者会員の会員情報ファイルの住所に 「鹿児 島県」 を含み、 かつ、 年齢が 1 0〜2 0歳で、 かつ、 診断コメントに 「糖尿病」 あるいは 「胃潰瘍」 を含む医用データが抽出される (図示せず) 。 各条件は、 行 内は AND条件、 行と行は O R条件となる。 抽出された医用データの 1つを選択すると、 該医用データの詳細閲覧画面 (図 示せず) に移行し、 研究者会員として該医用データにアクセス権が追加される。 次に、 患者を含めた会員の求める期間、 重要な医用データを選別して保存する ことを可能にするための、 保管責任会員決定方法の一実施例について、 図 2、 図 3、 図 3 2、 図 3 3、 図 3 4を参照して説明する。 On the medical data search condition input screen 28, for example, in the first line of the search condition, enter "Kagoshima Prefecture" for the region, "10 to 20" for the age, and "Diabetes" for the diagnosis. In the second line of the search, enter "Kagoshima" for the region, "10 to 20" for the age, and "Gastric ulcer" for the diagnosis, and enter "Kagoshima" in the address of the patient member's member information file. Medical data containing “prefecture”, ages 10 to 20 years, and “diabetes” or “gastric ulcer” in the diagnostic comments are extracted (not shown). Each condition is an AND condition within a line and an OR condition between lines. When one of the extracted medical data is selected, the screen shifts to a detailed browsing screen (not shown) of the medical data, and an access right is added to the medical data as a researcher member. Next, Fig. 2, Fig. 3, and Fig. 32 show an example of a method for determining a member responsible for storage to enable the selection and storage of important medical data during the period required by members, including patients. This will be described with reference to FIGS. 33 and 34. FIG.
医用データの保管責任は、該医用データにアクセス権を有する会員の意思を確 認することによって決定され、 医用データの保管責任者となる会員の優先度は、 医用データを必要とする度合いに応じて決定され、 アクセス権を有する会員全員 が保管責任を放棄した場合には、 医用データは破棄される。  Responsibility for storing medical data is determined by confirming the intention of the member who has access to the medical data, and the priority of the member who is responsible for storing medical data depends on the degree to which medical data is required. Medical data will be destroyed if all members with access rights abandon their custody.
図 3 2は、 図 3に示す医用データ管理ファイル 3のアクセス権記録領域のデー タ例 3— 4を、 模式図として示したものであり、 例えば、 医用データにアクセス 権を有する会員として、 医療機関会員として医療ひ、 患者会員として患者 a、 医 師会員として医師 A、 医師 Bが存在する場合のアクセス権記録領域の状態遷移を 示してある。  Fig. 32 schematically shows an example of data 3-4 in the access right recording area of the medical data management file 3 shown in Fig. 3. For example, as a member having access right to medical data, The state transition of the access right recording area is shown in the case where there is medical care as an institution member, patient a as a patient member, doctor A and doctor B as doctor members.
保管責任会員の決定方法として、例えば、図 3 3に示すように、医療機関会員、 患者会員、 医師会員、 準医療従事者会員、 研究者会員の順に優先とし、 かつ、 同 じ会員種では古いアクセス権を所有する順に優先すると決定した場合、第一優先 の保管責任会員は医療 となり、 このときの医用データ管理ファイルのアクセス 権記録領域は、 図 3 2のアクセス権記録領域の状態 A ( S 3 2— 1 ) のようにな る。  For example, as shown in Fig. 33, members of the medical care institution, patients, physicians, quasi-healthcare workers, and researchers are prioritized in order to determine the members responsible for custody. If it is determined that access rights are given priority in the order in which they are owned, the storage member with the first priority is medical, and the access right recording area of the medical data management file at this time is the state A (S 3 2— 1).
尚、 保管責任会員の決定方法は、 本実施例で記載した決定方法に限定されるも のではなく、 各医療機関の利用態様により、 変更しても良い。  The method for determining the custody member is not limited to the method described in this embodiment, but may be changed according to the usage of each medical institution.
ここで、 医療ひが医用データに不要宣言を行うと、 次の保管責任会員候補者で ある患者 aに保管責任が移転され、 患者 aに保管責任が移転した旨の通知がなさ れる。 患者 aは、 保管責任移転の通知を受け、 了承すると、 保管責任者となり、 図 3 2の状態 B ( S 3 2— 2 ) のようになる。 し力 し、 患者 aが該医用データに対して不要宣言を行うと、 次の候補へ保管責 任が移転するが、 次の保管責任会員候補である医師会員枠の中で、 医師 Aが医師 Bより古いアクセス権を有しているので、 次の保管責任会員は医師 Aと決定され、 医師 Aに保管責任が移転した旨の通知がなされ、 アクセス権記録領域は状態 C ( S 3 2— 3 ) となる。 Here, if the medical staff declares unnecessary to the medical data, the custody is transferred to the next candidate for the custody member, patient a, and the patient a is notified that the custody has been transferred. Patient a is notified of the transfer of custody and, if accepted, becomes the custody and becomes the state B (S32-2) in Figure 32. When patient a declares unnecessary for the medical data, the custody transfer is transferred to the next candidate.However, in the next candidate member of custody, doctor A becomes a physician. Because he has access rights older than B, the next custody member is determined to be Doctor A, a notification is given to Doctor A that custody has been transferred, and the access right record area is in state C (S32— 3)
以後、保管責任の候補がいなくなるまで、同様の処理が繰り返され、状態 D ( S 3 2 - 4 )に示すように、全ての保管責任会員が存在しなくなった場合、医用デー タは削除される。  Thereafter, the same process is repeated until there are no more candidates for archival responsibility, and as shown in state D (S32-4), if all archival members no longer exist, medical data is deleted. .
医用データの管理ファイルにアクセス権を有する会員は、不要宣言を行ってい ても、 その医用データが本システムから削除されるまではアクセス可能である。 このように、 医用データにアクセス権を有する会員全員の保管意思を確認し、 全員が不要と宣言した場合には自動的に医用データが削除される仕組みを実現 している。  Members who have access to the medical data management file can access the medical data until it is deleted from the system, even if the member has declared unnecessary. In this way, a mechanism is realized in which all members who have access rights to medical data are confirmed to keep the data, and if all members declare unnecessary, the medical data is automatically deleted.
尚、 多くの医用データにアクセス権を有する会員において、 医用データの保管 責任に関する管理が煩雑となった場合に対応するために、 図 2の会員情報フアイ ル 2— 1 , 2— 2に、 保管責任自動放棄フラグ 2— l a , 2 - 2 aを設定できる としてもよい。  In addition, in order to cope with complicated management of medical data storage responsibilities for members who have access to many medical data, the member information files 2-1 and 2-2 in Fig. 2 are stored. The responsibility waiver flag 2 — la, 2-2 a may be set.
ここで保管責任の自動放棄フラグ 2— 1 a, 2— 2 a力 「 1」 の場合は、 該会 員が医用データの保管責任者となった場合に自動的に不要と宣言することを示 し、 保管責任の自動放棄フラグ 2— 1 a, 2— 2 aカ 「 0」 の場合は、 該会員が 医用データの保管責任者となった場合に、 その都度通知を受けることを示す。 さらに、 図 3に示すように、 各会員が、 重要と判断する医用データの管理ファ ィルのアクセス権記録領域 3 — 2に重要フラグ 3— 2 aを設定できるとしても よい。  Here, the automatic abandonment flag of storage liability 2-1 a, 2-2 a If the power is “1”, it indicates that the member is automatically deemed to be unnecessary if he / she is responsible for storing medical data. However, if the storage liability automatic abandon flag 2-1a, 2-2a is “0”, it indicates that the member will be notified each time the member becomes the medical data storage manager. Further, as shown in FIG. 3, each member may set the important flag 3-2a in the access right recording area 3-2 of the management file of the medical data determined to be important.
ここで、 重要フラグ 3— 2 aが 「1」 の場合は、 保管責任自動放棄フラグ 2— 1 a , 2— 2 aを 「1」 を設定している会員にとって、 該医用データは特別に重 要であることを表し、 保管責任の自動放棄をしない。 Here, if the important flag 3-2a is “1”, the medical data is particularly important for members who set the automatic storage waiver flag 2-1a and 2-2a to “1”. It does not automatically give up storage liability.
上記の重要フラグ 3— 2 aと保管責任自動放棄フラグ 2_ 1 a , 2- 2 aを含 めた保管責任決定のプロセスの詳細について、 図 34に基づいて説明する。 会員が会員 I Dとパスワードを入力し、 医用データ管理システムにログインす ると (S 3 4— 1) 、 まず、 新規に保管責任者となった医用データが存在したら (S 34— 2) 、 新規に保管責任者となった医用データが通知される (S 3 4— 3) 。  The details of the process for determining the storage responsibility, including the important flag 3-2a and the automatic storage responsibility abandonment flag 2_1a, 2-2a, will be described with reference to Fig. 34. When the member enters the member ID and password and logs in to the medical data management system (S34-4-1), first, if there is medical data that is newly responsible for storage (S34-2), the new Is notified of the medical data that has become the storage manager (S34-4-3).
ここで、 保管責任を有する医用データが不要なら、 「不要」 を入力し不要宣言 を行い (S 34— 4) 、 その結果、 該医用データ管理ファイルの該会員のァクセ ス権の不要フラグ 3— 2 bは 「1」 となる (S 34— 5) 。  Here, if the medical data having the storage responsibility is unnecessary, enter “unnecessary” and declare the unnecessary (S34-4), and as a result, the unnecessary flag of the access right of the member in the medical data management file 3— 2b becomes "1" (S34-5).
もし、 該医用データにアクセス権を持つ全ての会員の不要フラグ 3— 2 が 「1」 なら (S 34— 6) 、 医用データを削除して (S 34— 1 0) 、 処理は終 了となる。  If the unnecessary flags 3-2 of all members having access to the medical data are "1" (S34-6), the medical data is deleted (S34-10), and the processing is terminated. Become.
該医用データにアクセス権を持つ会員の中に不要フラグ 3— 2 bを 「0」 と設 定している会員がいたら、 医用データ管理ファイルから次の保管責任会員の候補 を選定する (S 34— 7) 。  If any of the members who have access to the medical data have the unnecessary flag 3-2b set to "0", select the next candidate for the storage responsible member from the medical data management file (S34). — 7).
もし、 図 2に示す新しい保管責任会員の候補の会員情報ファイル 2— 1, 2— 2の保管責任自動放棄フラグ 2— 1 a, 2— 2 a力 S 「1」 でないならば (S 3 4 — 8) 、 会員に新たに保管責任会員となったことを通知し (S 3 4— 1 1) 、 処 理終了となる。  If the storage liability automatic abandon flag 2-1a, 2-2a power S in the member information file 2-1 and 2-2 of the new storage liability member candidate shown in Fig. 2 is not "1" (S34) — 8) Then, the member is notified that he / she has newly become the storage-responsible member (S34-1-1), and the processing ends.
もし、 新しい保管責任会員の候補の会員情報ファイル 2— 1 , 2— 2の保管責 任自動放棄フラグ 2— 1 a , 2 - 2 aが 「 1」 であるならば (S 34— 8) 、 図 3に示す該保管責任会員候補の重要フラグ 3— 2 aをチェックする。  If the storage liability automatic abandonment flags 2-1a and 2-2a of the new member information file 2-1 and 2-2 of the new storage liability member are "1" (S34-8), Check the important flag 3-2a of the storage-responsible member candidate shown in FIG.
もし、 該保管責任会員候補の重要フラグ 3— 2 aカ 「 1」 であれば ( S 34 _ 9) 、 会員に新たに保管責任会員となったことを通知し (S 34— 1 1) 、 処理 終了となる。 もし、 該保管責任会員候補の重要フラグ 3— 2 aが 「0」 であれば (S 3 4— 9 ) 、 S 3 4— 5に戻り、 同様の処理が継続される。 If the important flag of the candidate for custody responsible member is 3-2 a f “1” (S34_9), the member is notified that he / she has become a custody responsible member (S34-11), and Processing ends. If the important flag 3-2a of the storage responsible member candidate is "0" (S34-9), the process returns to S34-5, and the same processing is continued.
このように、 医用データの保全は、 各会員に任されており、 医用データを共有 する会員がそれぞれの重要度に応じて、 選別して保存でき、 医用データの保存義 務期間が経過した医用データが安易に失われる危険性がない。  In this way, the preservation of medical data is left to each member, and members who share medical data can select and store them according to their importance, and medical data for which medical data storage obligations have passed There is no risk of data being easily lost.
次に、 医療経済分野に寄与するべく、 医用データ管理システムを管理運営して いく実施例について説明する。  Next, an example of managing and operating a medical data management system to contribute to the medical economic field will be described.
例えば、 医用データ管理システムを管理運営していくための経済基盤は、 会員 への課金と広告料であり、 会員への課金は、 会費、 システム利用に伴うシステム 利用料 (遠隔診断、 研究者会員の医用データ使用) 、 医用データの保管料などが ある。  For example, the economic basis for the management and operation of a medical data management system is billing to members and advertising fees. Billing to members includes membership fees, system usage fees associated with system use (remote diagnosis, researcher members There is a medical data storage fee.
遠隔診断を行う場合には、遠隔診断の依頼を受ける医師会員は専門分野や遠隔 診断を引き受ける条件を提示できるが、 ここに手数料等の条件を提示してもよい。 この場合、 依頼会員が遠隔診断を依頼し、 依頼を受けた医師会員が返書を作成し た時点で課金が発生するとし、 その一部をシステム管理者がシステム利用料とし て徴収する。  When performing remote diagnosis, the doctor member who receives the request for remote diagnosis can present the field of specialization and the conditions under which the remote diagnosis is undertaken. However, conditions such as fees may be presented here. In this case, it is assumed that the requesting member requests the remote diagnosis, and the doctor member who receives the request prepares a reply, and a fee is charged, and a part of the fee is collected by the system administrator as a system usage fee.
医用データを研究利用する場合、 例えば、 医学研究者が、 本システムを利用し て複数の患者会員の医用データを閲覧した場合、 閲覧した医用データ毎に課金が なされる。 この時、 システム管理者がシステム利用料を徴収する。 医用データを 提供する側である患者会員は医用データ提供料を要求しても良いことにしてお けば、 医用データの公開促進が期待できる。  When researching and using medical data, for example, when a medical researcher browses medical data of a plurality of patient members using this system, a fee is charged for each medical data browsed. At this time, the system administrator collects the system usage fee. If the patient members who provide medical data can request medical data provision fees, the promotion of the release of medical data can be expected.
医用データの保管料を決定する場合、 医用データ管理システムは、 毎月全ての 医用データの管理ファィルから保管責任者を検索し、 管理ファィルに記録されて いる該医用データのデータ量を集計し、会員毎の保管責任医用データの保管量を 計算し、 これに対して課金する。  When determining the storage fee for medical data, the medical data management system searches for the storage manager from all medical data management files every month, tallies the data amount of the medical data recorded in the management file, and Calculate the amount of stored medical data for each storage, and charge for this.
広告料に関しては、 例えば、 システム管理者は、 図 5に示すホームページ画面 5 _ 1もしくは、 図 6の各会員の口グイン後初期画面 6に広告を掲載し、 広告料 を徴収するとしてもよい。 Regarding the advertising fee, for example, the system administrator 5 _ 1 Alternatively, an advertisement may be posted on the initial screen 6 after each member's login as shown in Fig. 6 and an advertisement fee may be collected.
本システム上の広告は一定の会員種向けに発信可能であることが付加価値と なるため、 効果的な宣伝効果を期待できる。  The added value of advertising on this system is that it can be sent to a certain type of member, so an effective advertising effect can be expected.
又、 システム運営経費に広告収入を投入することで、 会員への課金を抑えるこ とが期待される。  In addition, it is expected that the billing to members will be reduced by investing advertising revenue in system operation expenses.
尚、 医用データ管理システムの利用に伴うシステム利用料、 医用データの保管 料は完全従量制にしても良いし、固定料金制にしても良く、両者の併用でも良い。 本発明の医用データ管理システムにおいて、 患者が最大限の権利と利便性を享 受するためには、 医用データを登録 '保管される患者は、 会員であることが必要 であるが、 患者が会員でない場合 (以下、 非会員患者と呼ぶ) においても、 医療 従事者の利便性のために、 本医用データ管理システムを利用可能である。  Note that the system usage fee and medical data storage fee associated with the use of the medical data management system may be a completely metered system, a fixed fee system, or a combination of the two. In the medical data management system of the present invention, in order for the patient to enjoy the maximum rights and convenience, the patient who registers the medical data must be a member, but the patient must be a member. In other cases (hereinafter referred to as non-member patients), the medical data management system can be used for the convenience of healthcare professionals.
ただし、 本発明の医用データ管理システムの不正利用防止等、 セキュリティを 確保するために、 必要な制限を行う事が望ましい。  However, it is desirable to make necessary restrictions in order to ensure security, such as preventing unauthorized use of the medical data management system of the present invention.
以下に非会員患者の一運用例を示すが、 この運用例は本発明を限定するもので はない。  An operation example of a non-member patient is shown below, but this operation example does not limit the present invention.
例えば、 非会員患者を登録できるのは、 医師会員、 準医療従事者会員、 医療機 関会員とし、 研究者会員は非会員患者を登録不可能とする。  For example, non-member patients can be registered only by physician members, associate medical staff members, and medical institution members, while researcher members cannot register non-member patients.
非会員患者を登録する場合、 患者会員 I Dと、 アクセス権追加用認証手段が発 行されるが、 ログイン用認証手段は非会員に対しては発行されず、 非会員患者は 本システムに口グインできない。  When registering a non-member patient, the patient member ID and authentication means for adding access rights are issued, but the authentication means for login is not issued to non-members, and non-member patients can login to this system. Can not.
非会員患者の I Dとアクセス権追加用認証手段は、非会員患者を登録した医師 会員、 準医療従事者会員、 医療機関会員が管理する。  The ID of non-member patients and the authentication method for adding access rights are managed by physician members, associate medical staff members, and medical institution members who have registered non-member patients.
医用データの登録は、 医師会員、 準医療従事者会員、 医療機関会員が、 非会員 患者会員 I Dとアクセス権追加用認証手段を用いて行い、 登録した医用データの アクセス権は、 医用データを登録した会員のみが有することとなり、 医用データ 保管責任会員も該医用データを登録した会員となる。 Registration of medical data is performed by doctor members, quasi-medical worker members, and medical institution members using non-member patient member IDs and authentication means for adding access rights.Register medical data for access rights of registered medical data. Medical data The storage responsible member is also the member who registered the medical data.
非会員患者の医用データに関する遠隔診断の依頼は、 アクセス権を有している 会員が、 他の会員にァクセス権を追加することで従来通り実現可能である。  Requests for remote diagnosis of medical data of non-member patients can be realized as usual by members who have access rights by adding access rights to other members.
非会員患者の医用データへ、 他の会員がアクセス権を追加することに対する保 護、 及び研究用公開は、 患者会員としてログインできないので不可能となる。 尚、 非会員患者が、 必要に応じて正式な患者会員として登録してもよく、 この 場合、 患者会員 I Dは継続して利用可能であり、 口グイン用認証手段を新規登録 し、 アクセス権追加用認証手段を更新することが望ましい。  Protecting other members from adding access rights to the medical data of non-member patients and publishing for research is not possible because they cannot log in as patient members. In addition, non-member patients may register as formal patient members as needed.In this case, the patient member ID can be used continuously, and a new authentication method for mouth login is newly registered and access rights are added. It is desirable to update the authentication means.
非会員患者が正式な患者会員となった場合に、 患者会員は、 過去に登録された 医用データのアクセス権を獲得できるとしても良い。 産業上の利用の可能性  If a non-member patient becomes a formal patient member, the patient member may gain access to previously registered medical data. Industrial potential
以上説明したように、 本発明の医用データ管理システムは、 患者、 医師、 医師 以外の医療従事者、 および、 医療機関が会員となり、 会員毎の I Dにログイン用 認証手段を備えるようにしたので、 インターネットを有効に利用できると共に、 医用データの有効活用が図れる。  As described above, in the medical data management system of the present invention, the patient, the doctor, the medical staff other than the doctor, and the medical institution become members, and the ID of each member is provided with a login authentication means. Effective use of the Internet and effective use of medical data can be achieved.
又、個々の医用データに付随する管理ファイルに会員のアクセス権を記録する ことにより、 会員の医用データへのアクセスを可能ならしめるようにしたため、 個々の医用データ毎に会員のアクセスの可否が管理できる。  Also, by recording the member's access right in the management file attached to each medical data, it is possible to access the member's medical data, so that the member's access is managed for each individual medical data. it can.
さらに、 管理ファイルに会員のアクセス権を新たに記録することを可能ならし める手段としてアクセス権追加用認証手段を具備し、該アクセス権追加用認証手 段を患者会員毎に存在させるようにしたため、 医師会員が未だアクセス権のない 患者会員の医用データにも、 新たにアクセスする方法が提供されている。  In addition, an access right adding authentication means is provided as a means for enabling the member's access right to be newly recorded in the management file, and the access right adding authentication means is provided for each patient member. This has provided a new way to access the medical data of patient members who do not yet have access to them.
さらに、 管理ファイルに会員のアクセス権を記録すると共に、 管理ファイルに 会員のアクセス権を新たに記録することを可能ならしめる手段としてアクセス 権追加用認証手段を具備する事としたため、 ひとたび医用データの管理ファイル にアクセス権が記録された医用データに対しては、 アクセス権追加認証手段が無 くてもアクセスが可能となり、 ァクセス権の獲得とァクセス権の保持が独立して 管理される。 In addition, the access right of the member is recorded in the management file, and the authentication means for adding the access right is provided as a means for enabling the new recording of the access right of the member in the management file. Management file Access to medical data in which access rights have been recorded can be accessed without additional access right authentication means. Acquisition of access rights and retention of access rights are managed independently.
既に、 医用データの管理ファイルにアクセス権が記録されている一会員が、 そ の管理ファイルに他の会員のアクセス権を追加記録することにより、 これらの医 用データへの他の会員のアクセスを可能ならしめることにより、 医用データにァ クセス権を持つ会員が、 他の会員にアクセス権を付与する事が可能となり、 本シ ステムの会員間で遠隔診断時の医用データの開示が実現される。  One member, whose access rights have already been recorded in the medical data management file, adds another member's access rights to that management file, thereby restricting other members' access to these medical data. By making it possible, members who have access to medical data can grant access to other members, and the disclosure of medical data at the time of remote diagnosis among members of this system is realized. .
患者会員は全ての自己の医用データの管理ファイルにアクセス権が自動的に 記録される特徴により、 患者会員は自己の医用データに関して、 閲覧、 開示が可 能で、 患者の知る権利の充実が図れる。  Patient members can view and disclose their own medical data with the feature that access rights are automatically recorded in the management file of all their own medical data, thereby enhancing the patient's right to know. .
又、 患者会員自身で自己の医用データを医用データ管理システムに登録するこ とが可能であることにより、 患者会員自身で自己の身体状況等の情報を保存する 手段が与えられる事になり、 積極的な医療情報の管理が図られる。  In addition, since the patient members themselves can register their own medical data in the medical data management system, the means for the patient members themselves to save information such as their physical condition can be provided. Medical information is managed.
研究者会員を参加させ、 患者会員が、 自己の医用データを、 医用データ管理シ ステム上で開放できるように構成されていることにより、 医療現場の情報を直接 的に、 研究や教育に利用する可能性を開く。  Involve researcher members and enable patient members to open their medical data on the medical data management system, so that information on medical sites can be used directly for research and education Open up possibilities.
患者会員が承諾した医用データ範囲を医用データの管理ファイルに記録し、 研 究者会員に対して許可された医用データを開放できるように構成されているこ とより、 該医用データの開放は本人の意思であるため、 インフォームドコンセン トを経た医用データと見なせるので、 利用価値が高い。  The medical data range approved by the patient member is recorded in the medical data management file, and the medical data permitted to the researcher member can be released. Because it is the will of the patient, it can be regarded as medical data that has undergone informed consent, and is highly useful.
管理ファイルにアクセス権の記録された各会員において、 医用データを必要と する順に該医用データの保管責任者が決定されるため、 同一の医用データに複数 の会員がアクセス権を持ちながらも、 医用データの保管責任者が明確である。 該保管責任者がその任を放棄した場合、 次の候補者に保管責任者の任が移動す ることにより、 アクセス権を有する会員全てが、 保管責任者となり得るため、 会 員が認知しえない状況で、 必用な医用データを破棄されることがない。 For each member whose access right is recorded in the management file, the person in charge of storing the medical data is determined in the order in which the medical data is required, so even if multiple members have access rights to the same medical data, The person responsible for storing the data is clear. If the custodian relinquishes his role, all members with access rights can become custodians by transferring the custodian's role to the next candidate. Necessary medical data will not be destroyed in situations where personnel cannot recognize it.
最終的に全ての会員が保管責任を放棄した場合には、該医用データを削除する 機能が設けられているため、 無駄なデータの保管が発生しない。  If all members ultimately abandon their storage responsibility, there is a function to delete the medical data, so that useless data storage does not occur.
各医用データの保管責任者を検索することにより、会員毎の医用データ保管量 を集計し、 これに対して課金することを可能にする機能が設けられていることに より、 同一の医用データに複数の会員がアクセス権を持つ状況の中で、 医用デー タの保管量を考慮した料金体系が構築でき、 データの保管量と利用料金のバラン スを図れる。  By searching for the person in charge of storage of each medical data, the amount of medical data storage for each member is totaled, and a function is provided that enables charging for this. In a situation where multiple members have access rights, a fee structure that takes into account the amount of medical data stored can be constructed, and the amount of data storage and usage fees can be balanced.
患者会員のアクセス権追加用認証手段は変更できるようになつているため、 患 者会員はアクセス権追加用認証手段を他人に教えても、 変更することで古いァク セス権追加用認証手段を無効にする事ができ、 自己の個人情報である医用データ を保護する作用が期待できる。  Because the authentication method for adding access rights of patient members can be changed, the patient member can teach the authentication method for adding access rights to others, but by changing it, the old authentication method for adding access rights can be changed. It can be invalidated, and can be expected to protect medical data, which is its own personal information.
本医用データ管理システムは、 患者会員が特定する自己の医用データに対して、 他の会員が該医用データにアクセス権の追加行為を行う場合、 他の会員に対して は他の会員の行為を患者会員に通知する旨を警告するようになっていることに より、 個人情報である医用データの、 他人による無闇な開示を抑止する効果が期 待できる。  This medical data management system is designed so that when another member adds an access right to the medical data specified by the patient member, By alerting the patient member of the notification, the effect of suppressing the unscrupulous disclosure of medical data as personal information by others can be expected.
又、 他の会員の該行為後に、 他の会員の該行為を記録し患者会員に通知するこ とより、 患者会員は、 自己の医用データにアクセス権を与えた会員、 与えられた 会員を知ることがでる。  In addition, after the act of the other member, the act of the other member is recorded and notified to the patient member, so that the patient member knows the member who has given access to the medical data of the patient and the member who has been given the access right. I can do it.
本発明の医用データ管理システムは、 患者会員が特定する自己の医用データに 対して、 他の会員が該医用データにアクセス権の追加行為を 1回だけ許可する、 使い捨て認証手段を登録でき、使い捨て認証手段を医用データに設定することに よって、 アクセス権の追加行為を行う他の会員に対して、 使い捨て認証手段の入 力を要求できるように構成されていることにより、厳密な医用データの保護作用 を期待できる。 本発明の医用データ管理システムにおいて、 遠隔診断 ·診療の被依頼者となる 医師会員は、 専門領域等の遠隔診断 ·診療に関わる情報を掲載する機能が設けら れていることより、 被依頼者は自己の宣伝効果を期待でき、 併せて、 依頼者は遠 隔診断 ·診療の被依頼者となる医師会員を選択する情報を簡便に入手する事が期 待できる。 The medical data management system of the present invention can register a disposable authentication means that allows another member to add an access right to the medical data only once for the patient's own medical data specified by the patient member. Strict medical data protection by setting the authentication means to medical data so that other members performing additional access rights can be required to enter the disposable authentication means Action can be expected. In the medical data management system of the present invention, a doctor member who is a requestee of remote diagnosis and medical treatment is provided with a function for posting information related to remote diagnosis and medical treatment in a specialty area, etc. Can expect the effect of their own publicity, and at the same time, the client can expect to easily obtain the information for selecting the doctor member who will be the client for remote diagnosis and medical treatment.
医師会員又は患者会員が、 遠隔診断 ·診療の依頼者となり、 被依頼者である医 铈会員により遠隔診断■診療が実施された後、 被依頼者である医師会員の提供し た診断等の情報に対する評価を、 依頼者である会員が登録できることより、 遠隔 診断 ·診療は依頼者による評価を受けることとなり、 質の維持が期待できる。 又、 評価を受けた被依頼者も依頼者が下した評価に対する逆評価を医用データ 管理システムに登録できる構成になっていることより、遠隔診断'診療において、 ふさわしくない一定の傾向にある評価を行う依頼者や過激な評価を行う依頼者 を牽制し、 ネットワークによるシステム利用のモラルを維持する効果が期待でき る。  The doctor member or patient member becomes the requester of the remote diagnosis and medical treatment, and after the medical doctor member who is the requestee performs the remote diagnosis and the medical treatment, the information provided by the doctor member who is the requestee provides information such as the diagnosis. Since the client who is the client can register for the evaluation of, the remote diagnosis and medical treatment will be evaluated by the client, and the quality can be expected to be maintained. In addition, since the requestee who received the evaluation can register the reverse evaluation to the evaluation made by the client in the medical data management system, the evaluation that has a certain tendency that is not suitable for remote diagnosis It can be expected to have an effect of keeping the morale of using the system by the network by checking the requesting client or the client performing the extreme evaluation.
本発明の好適な実施形態について詳細に記載してきたが、 添付の請求の範囲に より定義される発明の精神及び範囲から離れることなく、 これらにおける種々の 変更、 置換、 改造が可能であることが理解されるべきである。  While the preferred embodiments of the invention have been described in detail, various changes, substitutions, and alterations therein may be made without departing from the spirit and scope of the invention as defined by the appended claims. It should be understood.

Claims

請 求 の 範 囲 The scope of the claims
1 . 患者、 医師、 医師以外の医療従事者、 および、 医療機関が会員として登録 され、 会員毎の I Dとログイン用認証手段を用いてログインし、 医用データを登 録 ·保存し有効利用するための医用データ管理システムにおいて、 個々の医用 データに付随する管理ファィルを備え、管理ファィルに会員のアクセス権を記録 することにより、会員の医用データへのアクセスを可能ならしめ、かつ、管理ファ ィルに会員のアクセス権を追加記録することを可能ならしめる手段としてァク セス権追加用認証手段を具備し、 このアクセス権追加用認証手段は患者会員毎に 存在するように構成されてなることを特徴とする医用データ管理: 1. Patients, doctors, non-doctor healthcare professionals, and medical institutions are registered as members, log in using their IDs and login authentication means, and register and save medical data for effective use. In the medical data management system, the management file attached to each medical data is provided, and the access right of the member is recorded in the management file so that the member can access the medical data. An access right adding authentication means is provided as a means for enabling additional recording of the access right of the member to the patient, and the access right adding authentication means is configured to exist for each patient member. Features of medical data management:
2 . 既に医用データの管理ファイルにアクセス権が記録されている会員が、 そ の管理ファイルに他の会員のアクセス権を追加記録する機能により、該医用デー タへの他の会員のアクセスを可能ならしめる事を特徴とする請求項 1に記載の 医用データ管理システム。 2. A member whose access right has already been recorded in the medical data management file can access other medical data by the function of additionally recording the access right of another member in the management file. 2. The medical data management system according to claim 1, wherein the medical data management system is used.
3 . 患者会員に対しては患者会員自身で自己の医用データを登録することを可 能とする機能を有し、 且つ、 他の会員が登録したものを含め、 患者会員の全ての 医用データの管理ファイルには患者会員自身のアクセス権が自動的に記録され る機能を有するように構成されることにより、 常に患者会員は自己の医用データ にアクセスできるのみならず、 医用データを他人へ開示することが可能な構成に されてなることを特徴とする請求項 1又は 2に記載の医用データ管理システム。 3. The patient member has a function that allows the patient member to register his / her own medical data, and also obtains all the medical data of the patient member, including those registered by other members. The management file is configured to have the function of automatically recording the access rights of the patient members themselves, so that the patient members can always access their own medical data and also disclose the medical data to others 3. The medical data management system according to claim 1, wherein the medical data management system is configured to be able to perform the medical data management.
4 . 研究者会員を参加させ、 患者会員が承諾した医用データ範囲を医用データ の管理ファイルに記録する機能を有することにより、研究者会員に対して許可さ れた医用データを開放できるように構成されてなることを特徴とする請求項 1 乃至 3のいずれか 1項に記載の医用データ管理システム。 4. The system is configured so that the medical data permitted to the researcher members can be released by having the function to record the medical data range approved by the patient members in the medical data management file by inviting the researcher members. Claim 1 characterized by being done 4. The medical data management system according to any one of claims 1 to 3.
5 . 管理ファイルにアクセス権の記録された各会員において、 医用データを必 要とする順に該医用データの保管責任者が決定され、該保管責任者がその任を放 棄した場合、 次の候補者に保管責任者の任が移動し、 最終的に全ての会員が保管 責任を放棄した場合には、該医用データを削除する機能が設けられてなることを 特徴とする請求項 1乃至 4のいずれか 1項に記載の医用データ管理システム。 5. For each member whose access right is recorded in the management file, the person in charge of storing the medical data is determined in the order in which the medical data is required, and if the person in charge of storage abandons that role, the next candidate The function of deleting the medical data is provided when the responsibility of the custody transfer is transferred to the person and eventually all members abandon the custody. The medical data management system according to any one of the preceding claims.
6 . 自動的に各医用データの保管責任者を検索し、 会員毎の医用データ保管量 を集計する機能を有し、集計結果に対して課金することを可能にする機能が設け られてなることを特徴とする請求項 1乃至 5のいずれか 1項に記載の医用デー タ管理システム。 6. A function to automatically search for the person in charge of storage of each medical data, totalize the amount of medical data stored for each member, and provide a function to charge for the total result The medical data management system according to any one of claims 1 to 5, characterized in that:
7 . 患者会員を過去に診察した医師会員が、 該患者会員の医用データに無制限 にアクセスすることを防ぐために、 患者会員はアクセス権追加用認証手段を変更 できるように構成されてなることを特徴とする請求項 1乃至 6のいずれか 1項 に記載の医用データ管理システム。  7. In order to prevent a doctor member who has examined a patient member in the past from accessing the medical data of the patient member without restriction, the patient member is configured to be able to change the authentication means for adding access right. The medical data management system according to claim 1, wherein:
8 . 患者会員が特定する自己の医用データに対して、 他の会員が該医用データ にアクセス権の追加行為を行う場合、他の会員に対しては他の会員の行為を患者 会員に通知する旨を警告し、 他の会員の該行為後に、 他の会員の該行為を記録し 患者会員に通知する警告設定機能が設けられてなることを特徴とする請求項 1 乃至 7のいずれか 1項に記載の医用データ管理システム。 8. If another member performs an additional access right to the medical data specified by the patient member, the other member will be notified of the other member's activity to the other member. 8. A warning setting function is provided, which warns the user that the action has been performed, and records the action of the other member and notifies the patient member after the action of the other member. 2. The medical data management system according to 1.
9 . 患者会員が特定する自己の医用データに対して、 他の会員が該医用データ にアクセス権の追加行為を 1回だけ許可する、使い捨て認証手段を登録する機能 を有し、 医用データにアクセス権の追加行為を行う他の会員に対して、 使い捨て 認証手段の入力を要求できるように構成されてなることを特徴とする請求項 1 乃至 8のいずれか 1項に記載の医用データ管理システム。 9. A function for registering a disposable authentication means that allows other members to add the access right to the medical data only once for their own medical data specified by the patient member. 9. The system according to claim 1, wherein the member is configured to be able to request the input of the disposable authentication means to another member who performs an act of adding access right to the medical data. The medical data management system according to 1.
1 0 . 会員が、 遠隔診断 '診療の依頼者となることを想定し、 被依頼者となる 医師会員は、 専門領域等の遠隔診断 ·診療に関わる情報を掲載する機能が設けら れてなることを特徴とする請求項 1乃至 9のいずれか 1項に記載の医用データ 管理 V 10. Assuming that the member will be the requester of the remote diagnosis and medical treatment, the doctor member who will be the requestee will be provided with a function to post information related to remote diagnosis and medical treatment in specialized fields. Medical data management V according to any one of claims 1 to 9, characterized in that:
1 1 . 会員が、 遠隔診断 '診療の依頼者となり、 被依頼者である医師会員によ り遠隔診断 ·診療が実施された後、 被依頼者である医師会員の提供した診断等の 情報に対する評価を、 依頼者である会員が登録する機能を有すると共に、 評価を 受けた被依頼者も、依頼者が下した評価に対する評価を登録できる構成にされて なることを特徴とする請求項 1乃至 1 0の 、ずれか 1項に記載の医用データ管 理システム。 ' 1 1. The member becomes the requester of the remote diagnosis and medical treatment, and after the remote diagnosis and medical treatment is performed by the requesting doctor member, the member receives the information such as the diagnosis provided by the requesting doctor member. Claims 1 to 5 characterized in that the function is to be registered by the requesting member and that the requestee who has received the evaluation can register the evaluation for the evaluation made by the requester. 10. The medical data management system according to item 1 or item 10. '
1 2 . 患者および医師を含む複数の種別の会員が登録されており、 それらの会 員がサーバに格納されている医用データにネットワークを介してアクセスしう るように構成されている医用データ管理システムにおいて、 1 2. Medical data management in which multiple types of members including patients and physicians are registered, and these members are configured to access the medical data stored on the server via a network. In the system,
前記サーバには前記会員毎に少なくとも I Dとログイン用認証手段とを含む 会員情報が記録されると共に、前記サーバに格納されている個々の医用データに はそれぞれ管理ファィルが添付されており、  The server records membership information including at least an ID and a login authentication unit for each member, and a management file is attached to each medical data stored in the server,
前記各管理ファイルには前記各会員が当該医用データにアクセスすることを 可能とするアクセス権が記録されると共に、 患者である会員毎に、 その会員情報 に他の会員のアクセス権を追加して記録することを可能とするアクセス権追加 用認証手段を具備していることを特徴とする医用データ管理システム。 In each of the management files, an access right that enables each member to access the medical data is recorded, and for each member who is a patient, the access right of another member is added to the member information. A medical data management system comprising an access right adding authentication means capable of recording.
1 3 . 患者および医師を含む複数の種別の会員が登録されており、 それらの会 員がネットワークを介して医用データにアクセスしうるように構成されている 医用データ管理システム用のサーバであって、 1 3. A server for a medical data management system in which a plurality of types of members including patients and doctors are registered and configured so that those members can access medical data through a network. ,
当該サーバには前記会員毎に少なくとも I Dと口グイン用認証手段とを含む 会員情報が記録されると共に、個々の医用データがそれぞれ管理ファイルを添付 した状態で格納されており、  In the server, member information including at least ID and mouth login authentication means is recorded for each member, and individual medical data are stored in a state where a management file is attached, respectively.
前記各管理ファイルには前記各会員が当該医用データにアクセスすることを 可能とするアクセス権が記録されると共に、 患者である会員毎に、 その会員情報 に他の会員のアクセス権を追加して記録することを可能とするアクセス権追加 用認証手段を具備している。  In each of the management files, an access right that enables each member to access the medical data is recorded, and for each member who is a patient, the access right of another member is added to the member information. It is equipped with an access right addition authentication means that enables recording.
PCT/JP2003/011648 2002-09-12 2003-09-11 Medical data management system WO2004025535A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2003262089A AU2003262089A1 (en) 2002-09-12 2003-09-11 Medical data management system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2002266274A JP4024116B2 (en) 2002-09-12 2002-09-12 Medical data management system
JP2002-266274 2002-09-12

Publications (1)

Publication Number Publication Date
WO2004025535A1 true WO2004025535A1 (en) 2004-03-25

Family

ID=31986632

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2003/011648 WO2004025535A1 (en) 2002-09-12 2003-09-11 Medical data management system

Country Status (4)

Country Link
JP (1) JP4024116B2 (en)
CN (1) CN1650305A (en)
AU (1) AU2003262089A1 (en)
WO (1) WO2004025535A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105868539A (en) * 2016-03-24 2016-08-17 苏州麦迪斯顿医疗科技股份有限公司 A multimedia medical data indexing method and device
CN107330832A (en) * 2017-07-10 2017-11-07 山东朗朗智能科技发展有限公司 The method for remote management and system of auscultation platform
US11423176B2 (en) * 2018-11-06 2022-08-23 Medicom Technologies Inc. Systems and methods for a de-identified medical and healthcare data marketplace

Families Citing this family (39)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006023832A (en) * 2004-07-06 2006-01-26 Nec Corp Medical information communication system, information communication method of this system, terminal, and program for driving it
CN100428754C (en) * 2004-11-26 2008-10-22 上海理工大学 Medical record exchanging system based on ebXML
JP4700462B2 (en) * 2005-09-27 2011-06-15 株式会社野村総合研究所 Database usage system
JP2007213139A (en) * 2006-02-07 2007-08-23 Toshiba Corp Patient information management system
JP5142581B2 (en) * 2007-04-19 2013-02-13 株式会社東芝 Medical information management system, access control device, and medical information management method
US9619616B2 (en) 2007-07-03 2017-04-11 Eingot Llc Records access and management
US10231077B2 (en) 2007-07-03 2019-03-12 Eingot Llc Records access and management
US8600776B2 (en) 2007-07-03 2013-12-03 Eingot Llc Records access and management
US9323894B2 (en) 2011-08-19 2016-04-26 Masimo Corporation Health care sanitation monitoring system
EP3605550A1 (en) * 2009-03-04 2020-02-05 Masimo Corporation Medical monitoring system
US10007758B2 (en) 2009-03-04 2018-06-26 Masimo Corporation Medical monitoring system
US10032002B2 (en) 2009-03-04 2018-07-24 Masimo Corporation Medical monitoring system
JP5094770B2 (en) * 2009-03-10 2012-12-12 富士フイルム株式会社 Case image retrieval apparatus, method and program
KR101632309B1 (en) 2009-07-07 2016-06-21 삼성전자주식회사 System and method for sharing web page of representing health information
CN102508885A (en) * 2011-10-18 2012-06-20 浙江大学 Method and system for data analysis of medical image reading behaviors
JP2013127762A (en) * 2011-12-19 2013-06-27 Rumi Miyato Management system for collection/operation of regenerative medicine technology
CN103889307B (en) * 2012-06-20 2016-03-30 奥林巴斯株式会社 Managing medical information device and medical information management system
US10098586B2 (en) 2012-09-28 2018-10-16 Panasonic Intellectual Property Corporation Of America Oral cavity inspection device and information display method
JP6058403B2 (en) * 2013-01-15 2017-01-11 東芝メディカルシステムズ株式会社 Medical image storage apparatus and control method thereof
US20160132644A1 (en) * 2013-05-20 2016-05-12 Hitachi, Ltd. Health Care Information Process System
JP5583256B1 (en) * 2013-09-18 2014-09-03 スキルアップジャパン株式会社 Emergency medical system, emergency response device, and emergency medical information provision device
CN104917794B (en) * 2014-03-13 2018-11-02 ***通信集团公司 A kind of data sharing method, apparatus and system
US9686356B2 (en) 2014-08-12 2017-06-20 Eingot Llc Zero-knowledge environment based social networking engine
JP2016143203A (en) * 2015-01-30 2016-08-08 富士フイルム株式会社 Medical examination support device, operation method and operation program of the same, and medical examination support system
JP6885663B2 (en) * 2015-06-18 2021-06-16 Mrt株式会社 Information processing equipment and methods, and programs
WO2017126168A1 (en) * 2016-01-21 2017-07-27 オリンパス株式会社 Image reading report creation support system
CN105844565B (en) * 2016-06-12 2019-11-26 上海青赛生物科技有限公司 Bio-pharmaceuticals information management system
JP6360998B2 (en) * 2016-10-17 2018-07-25 国立大学法人東北大学 Health information processing equipment
JP6738715B2 (en) * 2016-11-22 2020-08-12 パラマウントベッド株式会社 Terminal device, information providing method, and computer program
KR20180076910A (en) * 2016-12-28 2018-07-06 (주)메디컬로직 A method of transferring medical records to the third part in an emergency
KR102000745B1 (en) * 2017-03-17 2019-07-16 (주) 프로큐라티오 Method and system for managing personal medical information data
CN107133447A (en) * 2017-03-27 2017-09-05 牡丹江医学院 A kind of medical research data management system and method
US10601960B2 (en) 2018-02-14 2020-03-24 Eingot Llc Zero-knowledge environment based networking engine
JP6505920B2 (en) * 2018-06-01 2019-04-24 富士フイルム株式会社 Medical care support device, method and program for operating medical care support device, and medical care support system
JP6821076B1 (en) * 2020-04-28 2021-01-27 株式会社キャピタルメディカ Information sharing system and program
JP6888857B1 (en) * 2020-11-06 2021-06-16 永田 達也 Medical document provision support system
JP7135124B2 (en) * 2021-01-08 2022-09-12 キヤノン株式会社 IMAGE FORMING APPARATUS, IMAGE FORMING APPARATUS CONTROL METHOD, AND PROGRAM
CN112785265A (en) * 2021-01-22 2021-05-11 中南大学 Medical big data use application management system
JP7250073B2 (en) * 2021-07-28 2023-03-31 ジェイフロンティア株式会社 Medical support device, medical support method, and program

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001257668A (en) * 2000-03-14 2001-09-21 Ntt Data Corp Authentication system, portable terminal, certifying method and recording medium
JP2002132722A (en) * 2000-10-30 2002-05-10 Nippon Telegr & Teleph Corp <Ntt> Surrogate authentication method, respective devices therefor, processing method for the same and program recording medium
JP2002169898A (en) * 2000-11-30 2002-06-14 Ricoh Co Ltd Information storage card, medical information processing system, computer system in database center, medical information processing method and medical information storage processing method
JP2002197186A (en) * 2000-12-27 2002-07-12 Fujitsu Ltd Personal information management device
JP2002215804A (en) * 2001-01-19 2002-08-02 Net Hospital Inc Health and medical care management system using network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001257668A (en) * 2000-03-14 2001-09-21 Ntt Data Corp Authentication system, portable terminal, certifying method and recording medium
JP2002132722A (en) * 2000-10-30 2002-05-10 Nippon Telegr & Teleph Corp <Ntt> Surrogate authentication method, respective devices therefor, processing method for the same and program recording medium
JP2002169898A (en) * 2000-11-30 2002-06-14 Ricoh Co Ltd Information storage card, medical information processing system, computer system in database center, medical information processing method and medical information storage processing method
JP2002197186A (en) * 2000-12-27 2002-07-12 Fujitsu Ltd Personal information management device
JP2002215804A (en) * 2001-01-19 2002-08-02 Net Hospital Inc Health and medical care management system using network

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105868539A (en) * 2016-03-24 2016-08-17 苏州麦迪斯顿医疗科技股份有限公司 A multimedia medical data indexing method and device
CN107330832A (en) * 2017-07-10 2017-11-07 山东朗朗智能科技发展有限公司 The method for remote management and system of auscultation platform
US11423176B2 (en) * 2018-11-06 2022-08-23 Medicom Technologies Inc. Systems and methods for a de-identified medical and healthcare data marketplace

Also Published As

Publication number Publication date
CN1650305A (en) 2005-08-03
JP2004102863A (en) 2004-04-02
AU2003262089A1 (en) 2004-04-30
AU2003262089A8 (en) 2004-04-30
JP4024116B2 (en) 2007-12-19

Similar Documents

Publication Publication Date Title
WO2004025535A1 (en) Medical data management system
Patel A framework for secure and decentralized sharing of medical imaging data via blockchain consensus
US10249386B2 (en) Electronic health records
Dusetzina et al. Background and purpose
CN104054084B (en) System and method for protecting and managing genome and other information
US9202084B2 (en) Security facility for maintaining health care data pools
JP4292199B2 (en) Verified personal information database
US8768731B2 (en) Syndicating ultrasound echo data in a healthcare environment
US20070078686A1 (en) Electronic health record transaction monitoring
US20050159984A1 (en) Medical data management system
US20070078685A1 (en) Multiple accounts for health record bank
US20060293925A1 (en) System for storing medical records accessed using patient biometrics
US20110082794A1 (en) Client-centric e-health system and method with applications to long-term health and community care consumers, insurers, and regulators
US20070168461A1 (en) Syndicating surgical data in a healthcare environment
US20110125527A1 (en) Systems, apparatus, and methods for identifying patient-to patient relationships
US20080040151A1 (en) Uses of managed health care data
AU2004308406A1 (en) Platform independent model-based framework for exchanging information in the justice system
US20070078684A1 (en) Models for sustaining and facilitating participation in health record data banks
WO2002003308A2 (en) Broadband computer-based networked systems for control and management of medical records
Park et al. Utilization of a clinical trial management system for the whole clinical trial process as an integrated database: system development
CA3197581A1 (en) Human-centric health record system and related methods
US20230385450A1 (en) Human-centric health record system and related methods
Wuyts et al. What electronic health records don’t know just yet. A privacy analysis for patient communities and health records interaction
Sohn et al. Clinical study of using biometrics to identify patient and procedure
Siqueira et al. User-centric health data using self-sovereign identities

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 20038096560

Country of ref document: CN

WWE Wipo information: entry into national phase

Ref document number: 1411/DELNP/2005

Country of ref document: IN

122 Ep: pct application non-entry in european phase