Restrict which SmartForm Submissions a User can process through the PatientInbox
Special Category Data under GDPR
As the Patient Inbox processes Special Category Data (health data) under GDPR you are able to restrict which SmartForm Submissions a user can process, so that you have more granular controls.
- As you need to audit access to Special Category Data at user level generic emails accounts and shared user accounts should not be used
To achieve the different access levels you will need to work with custom User Access Levels
You will need to create a custom User Access Level for each requirement and this will need at least the PatientInbox added as a module. You may also want to grant access to other Modules.
Creating and Managing User Access Levels
For example you could create three User Access Levels and remember to give it a name that is helpful to you
- PatientInbox - Registrations
- PatientInbox - Complaints
- PatientInbox - Prescriptions
Once created you can then specify which SmartForm Submissions this User Access Level has access to.
When you add the PatientInbox Module to the custom User Access Level there is an additional option within the displayed module.
 |
This is the SmartForm Filter Tool |
It will give you access to the following screen
You can then remove or select from the dropdown any of the SmartForms you wish to include