Enterprise Wide

<< Click to Display Table of Contents >>

Navigation:  Concepts and Terminology >

Enterprise Wide

 Previous pageReturn to chapter overviewNext page

Overview

 

This document discusses a case scenario which describes how to configure Plato Data Analyzer Professional for enterprises, where the software will be servicing more than one Facility. This document describes in detail the guidelines to follow when creating Review Templates, Topics And Criterion, Roles and the associated rights. This should serve as a starting point for implementing your own security model, based on these guidelines.

 

To learn what each of the role rights discussed in this document mean, read Role, to learn how to manage them read Managing Roles.

 

Scenario

 

General Hospital has three facilities that make up the enterprise. The fictional goals are:

 

a.Create most of the Review Templates shared by all 3 Facilities, still allowing individual Facilities to have the flexibility to create their own Review Templates for their specific needs.

b.Users from three of the Facilities should be able to perform Worksheet Data Entry for their worksheets.

c.A Manager from each of the Facilities should be able run Standard Reports, Report Writers, Dashboards, and Analyzers for the data entered for their Facilities only i.e. Manager from Facility A should not be able to view data for Facility B or Facility C.

d.Corporate Managers should be able to view data and reports from all the Facilities and perform comparisons against them.

e.All 3 Facilities have their own physicians, however some of the physicians are specialized in their fields and travel to all the Facilities. They can be attributed to Worksheets entered for any of the Facilities.

 

To Note

 

To accomodate the above scenario:

 

(from Point a and d): The Review Templates for which corporate managers need to consolidate data need to be created by corporate managers so they can be standardized across all 3 Facilities. Further individual Facilities should be able to create their own Review Templates custom to their needs.

 

(from Point b): Each Facility will have their own data entry users and will not be allowed to perform data entry for another Facility.

 

(from Point c): Each Facility will have their own Manager and will not be allowed to do reporting for another Facility.

 

(from Point d): Users from corporate headquarters should be allowed to view reports from all Facilities, but should not be allowed to edit data entered by the individual Facility; this function should be relegated to users or managers of individual Facilities.

 

(from Point e): Some physicians will have enterprise-wide scope others will have facility-specific scope.

 

Implementation

 

In our scenario, it is recommended that a total of 8 roles be created; 2 roles for corporate users, and 6 for Facilities

.

Corporate Administrators (Power Users): Users for this Role should be fully versed with Plato Data Analyzer Professional and will handle the most critical functions.

 

Corporate Users: Users of this Role will be running day to day reports for the headquarters.

 

Managers of Facilities A, B, and C: Users of this Role will be managing local Topics And Criterion, Review Templates, Attribution Type Objects and running reports.

 

Users of Facilities A, B, and C: Users of this Role will be performing WorksheetDataEntry for their Facility.

 

The 'Corporate Power Users' may not necessarily belong to headquarters, which can be from a local facility. It is simply a role set up for system administration.

 

 

No.

Role Right

Corporate Administrators

Corporate Users

Managers Facility A, B, and C

Users Facility A, B, and C

(Approximate number of users in the role)

2

Any number

3 (1 for each facility)

Any number

1

Role Scope

Enterprise-wide

Enterprise-wide

Facility-specific

Facility-specific

2

Can Manage System Tools

Yes


3

Can Manage Security Tools

Yes

Yes

4

Can Manage Attribution Type Objects

Yes

Yes / No

Yes

5

Can Manage Review Templates

Yes

Yes

6

Can Manage with Topic Editor

Yes

Yes

7

Can Delete Worksheets/Report Templates

Yes

Yes

8

Can View Reports

Yes

Yes

Yes

9

Can View Report Writers

Yes

Yes

Yes

10

Can View Dashboards

Yes

Yes

Yes

11

Can View Analyzer

Yes

Yes

Yes

12

Can Import Other Users Worksheets

n/a

n/a

n/a

n/a

13

Can Import Other Workstation Worksheets

n/a

n/a

n/a

n/a

14

Topic Rights for each Topic

Full Access (for all Topics)

None

Full Access for Topics created for their facility. Read only for Topics created by other facilities and corporate

None

15

Topic Rights for Worksheet Data Entry

Read Only (for all facilities)

Read Only (for all facilities)

Read-write for their Facility

Read-write for their facility

 

 

Explanation:

 

No 1: Corporate users have enterprise-wide scope giving them the ability to access data for any Facility. Facility Roles have access to only data for their Facility.

 

No 2: Managing of Attribution Types and Worksheet Fields is extremely critical, it is recommended that this be a guarded function and be given to only 'Corporate Administrators'.

 

No 3: This will allow 'Corporate Administrators' to mange the corporate Users and 'Facility Managers' to manage their own Users. As 'Facility Managers' Role is facility-specific they will not be able to create Users with access to other Facility data.

 

No 4: Except for 'Data Entry Users' all should be able to create new physicians. As 'Facility Managers' will not be able to create physicians (or any other Attribution Type Objects) with enterprise-wide scope, Corporate Administrators will be able to do that for them. However, if this happens too often that function may be relegated to 'Corporate Users' or another new Role may be created for this purpose.

 

No 5 and 6: Extreme care should be taken when creating Review Templates and Topics And Criterion. It is recommended that the 'Corporate Administrators' create all Topics And Criterion and Review Templates. Any request for a new Review Template should be first processed through a committee meeting and not made free for all. This will allow having standards implemented across the enterprise and allowing comparative analysis to be performed. In cases where custom Review Templates and Topics And Criterion need to be created they can be created by facility managers (but other Facilities should be given read-only access to it so they do not duplicate the effort, see Point 14). A communication channel should be established when one Facility wishes to use Topics And Criterion from another Facility.

 

No 7: Only 'Corporate Administrators' and 'Facility Managers' are allowed to delete, so that proper auditing can be maintained. 'Corporate Administrators' would typically delete Report Templates and 'Facility Managers' would delete Worksheets for their Facility.

 

No 8, 9, 10, 11: 'Corporate Administrators' and Managers will run reports for the headquarters and 'Facility Managers' for their Facility. As 'Facility Managers' are facility-specific, they will not be able to see data for other Facilities.

 

No 12 and 13: Are related to Importing Worksheets and are not relevant to the current discussion.

 

No 14: See Point 5 and 6.

 

No 15: Corporate users have read-only access to Worksheets for all the Facilities. Thus they can view the data but any changes will have to done by the 'Facility Managers' or 'Facility Users' of that Facility.