<< Click to Display Table of Contents >> Navigation: Concepts and Terminology > Enterprise Wide |
Overview
This document discusses a case scenario which describes how to configure PDA Professional for large corporations, who have more than one Facility. This document describes in detail the guidelines to follow when creating Review Template, Topics And Criterion, Roles and their associated rights. Although this document is not the final blue print for which Roles to create etc., but this should serve as a starting point for implementing your own security model, based on these guidelines.
To learn what each of the role rights discussed in this document mean, read Role, to learn how to manage them read Managing Roles.
Scenario
General Hospital has three facilities in Los Angeles (LAX), San Francisco (SFO) and New York (NYC). These are their goals:
a.Most of the Review Templates will be the same for all 3 Facilities, but individual Facilities should have the flexibility to create their own Review Templates for their specific needs.
b.Users from three of the Facilities should be able to perform Worksheet Data Entry for their worksheets.
c.Manager from each of the Facilities should be able run Standard Reports and Data Analyzer for the data entered for their Facilities only i.e. Manager from LAX should not be able to view data for SFO or NYC.
d.Corporate Managers should be able to view data and reports from all the Facilities and perform comparisons against them.
e.All 3 Facilities have their own physicians, however some of the physicians are specialized in their fields and travel to all the Facilities, thus they can be attributed to Worksheets entered for any of the Facilities.
Points To be Noted
Following points are clear from the above scenario:
▪(from Point a and d): The Review Templates for which corporate managers need to consolidate data need to be created by corporate managers so they can be standardized across all 3 Facilities. Further individual Facilities should be able to create their own Review Templates custom to their needs.
▪(from Point 2): Each Facility will have their own data entry users and will not be allowed to perform data entry for another Facility.
▪(from Point 4): Users from corporate headquarters should be allowed to view reports from all Facilities, but should not be allowed to edit data entered by the individual Facility; this function should be relegated to users or managers of individual Facilities.
▪(from Point 5): Some physicians will have enterprise-wide scope others will have facility-specific scope.
Implementation
It is recommended that a total of 8 roles be created; 2 roles for corporate users, and 6 for Facilities
.
▪Corporate Administrators (Power Users): Users for this Role should be fully versed with PDA Professional and will handle the most critical functions.
▪Corporate Users: Users of this Role will be running day to day reports for the headquarters.
▪Managers LAX, Managers SFO, Managers NYC: Users of this Role will be managing local Topics And Criterion, Review Templates, Attribution Type Objects and running reports.
▪Users LAX, Users SFO, Users NYC: Users of this Role will be performing WorksheetDataEntry for their Facility.
The 'Corporate Power Users' may not necessarily belong to headquarters, they can be from a local facility. It is the hat they will wear for managing PDA Professional.
No. |
Role Right |
Corporate Administrators |
Corporate Users |
Managers LAX,Managers SFO,Managers NYC |
Users LAX, Users SFO, Users NYC |
(Approximate number of users in the role) |
2 |
Any number |
3 (1 for each facility) |
Any number |
|
1 |
Role Scope |
Enterprise-wide |
Enterprise-wide |
Facility-specific |
Facility-specific |
2 |
Can Manage System Tools |
Yes |
|||
3 |
Can Manage Security Tools |
Yes |
Yes |
||
4 |
Can Manage Attribution Type Objects |
Yes |
Yes / No |
Yes |
|
5 |
Can Manage Review Templates |
Yes |
Yes |
||
6 |
Can Manage with Topic Editor |
Yes |
Yes |
||
7 |
Can Delete Worksheets/Report Templates |
Yes |
Yes |
||
8 |
Can View Reports |
Yes |
Yes |
Yes |
|
9 |
Can View Analyzer |
Yes |
Yes |
Yes |
|
10 |
Can Import Other Users Worksheets |
n/a |
n/a |
n/a |
n/a |
11 |
Can Import Other Workstation Worksheets |
n/a |
n/a |
n/a |
n/a |
12 |
Topic Rights for each Topic |
Full Access (for all Topics) |
None |
Full Access for Topics created for their facility. Read only for Topics created by other facilities and corporate |
None |
13 |
Topic Rights for Worksheet Data Entry |
Read Only (for all facilities) |
Read Only (for all facilities) |
Read-write for their Facility |
Read-write for their facility |
Explanation:
No 1: Corporate users have enterprise-wide scope giving them the ability to access data for any Facility. Facility Roles have access to only data for their Facility.
No 2: Managing of Attribution Types and Worksheet Fields is extremely critical, it is recommended that this be a guarded function and be given to only 'Corporate Administrators'.
No 3: This will allow 'Corporate Administrators' to mange the corporate Users and 'Facility Managers' to manage their own Users. As 'Facility Managers' Role is facility-specific they will not be able to create Users with access to other Facility data.
No 4: Except for 'Data Entry Users' all should be able to create new physicians. As 'Facility Managers' will not be able to create physicians (or any other Attribution Type Objects) with enterprise-wide scope, Corporate Administrators will be able to do that for them. However, if this happens too often that function may be relegated to 'Corporate Users' or another new Role may be created for this purpose.
No 5 and 6: Extreme care should be taken when creating Review Templates and Topics And Criterion. It is recommended that the 'Corporate Administrators' create all Topics And Criterion and Review Templates. Any request for a new Review Templates should be first processed through a committee meeting and not made free for all. This will allow having standards implemented across the enterprise and allowing comparative analysis to be performed. In cases where custom Review Templates and Topics And Criterion need to be created they can be created by facility managers (but other Facilities should be given read-only access to it so they do not duplicate the effort, see Point 12). A communication channel should be established when one Facility wishes to use Topics And Criterion from another Facility.
No 7: Only 'Corporate Administrators' and 'Facility Managers' are allowed to delete, so that proper auditing can be maintained. 'Corporate Administrators' would typically delete Report Templates and 'Facility Managers' would delete Worksheets for their Facility.
No 8 and 9: 'Corporate Administrators' and Users will run reports for the headquarters and 'Facility Managers' for their Facility. As 'Facility Managers' are facility-specific, they will not be able to see data for other Facilities.
No 10 and 11: Are related to Importing Worksheets and are not relevant to the current discussion.
No 12: See Point 5 and 6.
No 13: Corporate users have read-only access to Worksheets for all the Facilities. Thus they can view the data but any changes will have to done by the 'Facility Managers' or 'Facility Users' of that Facility.