Product Guide

Accessing the ZAP

Suggest Edits

Permitted Use

Under HIPAA, the use and disclosure of protected health information (PHI) is permitted for activities related to Treatment, Payment, and Healthcare Operations (TPO).

While HIPAA permits the use and disclosure of PHI for TPO activities, the health data exchanges that Zus partners with may put in place additional requirements to access patient data, such as treatment purpose of use or presence of a prescribing provider.

To use the Zus platform, your organization must also agree to Zusโ€™ Builder Terms of Service and have Zusโ€™s sales and legal teams review and approve your use case.


Asserting a Relationship with a Patient

Zus customers can indicate they have an active relationship for TPO purposes (i.e., the Authorized Activities) with a given patient using the FHIR Patient.active field. When it is set to โ€œtrueโ€, your organization can access the patientโ€™s Zus Aggregated Profile (ZAP), including third-party data and data contributed by other covered entities on Zus serving this patient.

This field can be set to โ€œtrueโ€ in the following ways:

  1. When you make a patient history API request or enroll a patient in a subscription, you are required to assert that you have a treatment consent for that patient. Zus treats this assertion as evidence of an active patient relationship and automatically sets the field to โ€œtrueโ€ on your behalf
  2. If you sync data to Zus from your EHR, that integration may be setting this field to โ€œtrueโ€
  3. You can set it directly for a given patient

When this field is null or set to โ€œfalseโ€, you can still access your own data on a patient, but the data contributed by third-party networks or other builders on Zus will no longer be visible.

๐Ÿšง

Careful about NULL values in the Patient.active field

Unlike the FHIR spec, Zus interprets a NULL Patient.active field as FALSE. If you set this field to NULL, Zus will pause active package enrollments and access to previously queried network data. We strongly recommend always setting this field to either TRUE or FALSE.

Active patient example:

{
    "resourceType": "Patient",
    "active": true,
    "name": [
        {
            "family": "Smith",
            "given": [
              	"Mike"
            ]
        }
  	],
...
}

Data Retention

Zus will store all clinical for a given patient and make it accessible to your organization for as long as the following conditions are true:

  • The FHIR Patient.active field is set to โ€œtrueโ€, indicating an active treatment relationship
  • The patient is actively enrolled in a Zus data subscription

What happens if I update the Patient.active field to โ€œfalseโ€?
As stated above, your organization will retain access to your data for that patient, but data contributed by third-party networks or other builders on Zus will no longer be accessible.

What happens if I unenroll a patient from a Zus data subscription, or instead submit a patient history query?
Your organization will retain access to data contributed by third-party networks according to
the following policy:

  • Accessible via Zus App or APIs for at least 30 days
  • Accessible via Zus data marts for at least 12 months

The data retention periods listed above are measured from the unenrollment date or the date of the last patient history query (whichever is later).

Updated 15 days ago