Table 3. Technologies, data domains, and remote access policies at five study sites.
| Study Site | Access | Data Source | Data Domains | Access Policies |
|---|---|---|---|---|
| A | Home grown web portal | Home grown data repository | Clinical laboratory results, Diagnostic reports (e.g. radiology results) Added clinical documentation, flow sheets and bedside instrument (ventilator) settings | Security agreements, vendor agreement, BAA |
| B | Vendor A web application #1 (CDR) | Vendor C CDR | Structured clinical data, Diagnoses, Laboratory results, Radiology/pathology reports, Physician notes | Security agreements, BAA |
| B | Vendor B web application #2 (clinical documentation) | Vendor C CDR | Structured clinical data, diagnoses, laboratory results, radiology/pathology reports, physician notes | Security agreements, BAA |
| C | Vendor clinical portal | Vendor D EHR | All clinical domains (comprehensive EHR) | Security agreements |
| D | Secure screen sharing | Home grown EHR | All clinical domains (comprehensive EHR) | Security agreements, BAA |
| E | Vendor E remote HIM module | Vendor E EHR | All clinical domains (comprehensive EHR) | Security agreements, vendor agreements, BAA |
BAA = business associates agreement; CDR = clinical data repository; EHR = electronic health record; HIM = health information management