CCAC Provincial Boundary Map Erie St. Clair South West Waterloo Wellington Hamilton Niagara Haldimand Brant Central West Mississauga Halton Toronto Central Central Central East South East Champlain North Simcoe Muskoka North East North East North West

SEARCH BY POSTAL CODE

To find local home and community care, please enter your postal code

Search
Looking for Care?

Services Provided to Health Information Custodians

​​Further to PHIPA regulation 329/04 section 6(3), in the course of providing services to enable a Health Information Custodian (HIC) to use electronic means to collect, use, disclose, retain or dispose of personal health information, the Health Information Network Provider (HINP) shall provide to each applicable health information custodian a plain language description of the services that the provider provides to the custodians. The description must be appropriate for sharing with the individuals to whom the personal health information relates, including a general description of the safeguards in place. The regulation also states that this information shall be made public.  As such, the following information is set out to fulfill the HSSOntario's obligations under the legislation as a HINP.

DESCRIPTIONS OF HEALTH SHARED SERVICES ONTARIO APPLICATIONS CONTAINING PERSONAL HEALTH INFORMATION

CARE COORDINATION APPLICATION

Client Health & Related Information System* (CHRIS*) is a web-based technology platform that holds the patient health records for each of the 14 Local Health Integration Networks (LHINs). CHRIS provides the LHINs with detailed client records, case-management tracking and support, while enabling health-system integration to and from the community. It allows LHIN intake staff to assess patients, refer patients to community services, and initiate care plans.

APPLICATIONS FOR LHINs TO COMMUNICATE WITH OTHER HEALTH PARTNERS

Health Partner Gateway* (HPG*) is a portal application system that supports the timely and secure exchange of information between a LHIN and a service provider. Service providers can access HPG to receive and respond to service offers, and access referrals and important patient records required for quality health care delivery. This allows LHIN Care Coordinators to receive prompt patient status updates to better coordinate patient care.

Community Health Portal (CHP) is an application that provides service providers, physicians and hospital staff with real-time health information about LHIN patients. Through CHP, LHIN Care Coordinators can share a summary of a patient's services, assessment(s) and other status documentation. Authorized health partners can access relevant information of patients actively receiving LHIN services.

OTHER INTEGRATIONS WITH LHINs' CHRIS

eNotification is a web-service interface that enables participating LHINS to be notified of active LHIN clients who meet certain criteria and are visited by Emergency Medical Services (EMS), present to a hospital emergency department, or are admitted to or discharged from hospital.

eReferral is a web-service interface that supports an automated method for a Referring Partner (i.e., acute-care hospital) staff to refer clients being discharged for LHIN assessment and services. The Referring Partner users identify the need for referrals to a LHIN in their system, at which point the system automatically sends the information to CHRIS for the LHIN​ user.

INFORMATION SECURITY AT HEALTH SHARED SERVICES ONTARIO (HSSO)

HSSOntario has put in place privacy and information security controls around personal health information or other personal information. HSSOntario adheres to the Personal Health Information Protection Act, 2004 (PHIPA) and its regulations as well as the Personal Information Protection and Electronic Documents Act (PIPEDA).

HSSOntario maintains comprehensive and robust administrative, physical and technical controls, consistent with industry best practices, to protect the confidentiality, integrity, and availability of personal health information while being transferred, processed or stored. There are multiple layers of security controls, including industry security best practices for system protection, encryption protocols, firewalls, physical access controls, privacy impact assessments and threat and risk assessments. All staff are required to complete privacy and security awareness training annually and sign confidentiality/non-disclosure agreements.